CVE-2026-43093
HIGH EPSS 2.9%
Published May 6, 20261mo ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
Published May 6, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago
Description
In the Linux kernel, the following vulnerability has been resolved: xsk: tighten UMEM headroom validation to account for tailroom and min frame The current headroom validation in xdp_umem_reg() could leave us with insufficient space dedicated to even receive minimum-sized ethernet frame. Furthermore if multi-buffer would come to play then skb_shared_info stored at the end of XSK frame would be corrupted. HW typically works with 128-aligned sizes so let us provide this value as bare minimum. Multi-buffer setting is known later in the configuration process so besides accounting for 128 bytes, let us also take care of tailroom space upfront.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High
Threat Intelligence
EPSS Exploit Probability
2.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 21
| Vendor | Product | Version | Range |
|---|---|---|---|
| linux | linux_kernel | * | ≥4.19.118 – <4.20 |
| linux | linux_kernel | * | ≥5.4.35 – <5.5 |
| linux | linux_kernel | * | ≥5.6.7 – <5.7 |
| linux | linux_kernel | * | ≥5.7.1 – <6.6.136 |
| linux | linux_kernel | * | ≥6.7 – <6.12.83 |
| linux | linux_kernel | * | ≥6.13 – <6.18.24 |
| linux | linux_kernel | * | ≥6.19 – <6.19.14 |
| linux | linux_kernel | 5.7 | any |
| linux | linux_kernel | 5.7 | any |
| linux | linux_kernel | 5.7 | any |
| linux | linux_kernel | 5.7 | any |
| linux | linux_kernel | 5.7 | any |
| linux | linux_kernel | 5.7 | any |
| linux | linux_kernel | 5.7 | any |
| linux | linux_kernel | 7.0 | any |
| linux | linux_kernel | 7.0 | any |
| linux | linux_kernel | 7.0 | any |
| linux | linux_kernel | 7.0 | any |
| linux | linux_kernel | 7.0 | any |
| linux | linux_kernel | 7.0 | any |
| linux | linux_kernel | 7.0 | any |
References 8
- git.kernel.org https://git.kernel.org/stable/c/0ec4d3f6e6934deb843b561ae048cd17218e5ad1
- git.kernel.org https://git.kernel.org/stable/c/1a6051cd7e3e4c54ff3854a43b638b9292af5e67
- git.kernel.org https://git.kernel.org/stable/c/5f123bc278bf4e3283d8606321bebbfd299f4384
- git.kernel.org https://git.kernel.org/stable/c/6523bc1b40e69301f24c14338b762af4739d6d39
- git.kernel.org https://git.kernel.org/stable/c/8769708add9eadeea8041a9761771bb715a87104
- git.kernel.org https://git.kernel.org/stable/c/9ea6ba4f3195dcba6e8b3e7b2e748593b7cafb12
- git.kernel.org https://git.kernel.org/stable/c/a03975beb9f6af0d8ac051e30b2abeabe618414f
- git.kernel.org https://git.kernel.org/stable/c/a315e022a72d95ef5f1d4e58e903cb492b0ad931
Remediation
- git.kernel.org https://git.kernel.org/stable/c/0ec4d3f6e6934deb843b561ae048cd17218e5ad1
- git.kernel.org https://git.kernel.org/stable/c/6523bc1b40e69301f24c14338b762af4739d6d39
- git.kernel.org https://git.kernel.org/stable/c/9ea6ba4f3195dcba6e8b3e7b2e748593b7cafb12
- git.kernel.org https://git.kernel.org/stable/c/a03975beb9f6af0d8ac051e30b2abeabe618414f
- git.kernel.org https://git.kernel.org/stable/c/a315e022a72d95ef5f1d4e58e903cb492b0ad931