CVE-2026-43346
MEDIUM EPSS 1.7%
Published May 8, 20261mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Published May 8, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago
Description
In the Linux kernel, the following vulnerability has been resolved: ice: ptp: don't WARN when controlling PF is unavailable In VFIO passthrough setups, it is possible to pass through only a PF which doesn't own the source timer. In that case the PTP controlling PF (adapter->ctrl_pf) is never initialized in the VM, so ice_get_ctrl_ptp() returns NULL and triggers WARN_ON() in ice_ptp_setup_pf(). Since this is an expected behavior in that configuration, replace WARN_ON() with an informational message and return -EOPNOTSUPP.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High
Threat Intelligence
EPSS Exploit Probability
1.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-617
Affected Products 10
References 3
- git.kernel.org https://git.kernel.org/stable/c/bb3f21edc7056cdf44a7f7bd7ba65af40741838c
- git.kernel.org https://git.kernel.org/stable/c/c73f365707d3b1b78b7d16e1f029020d1ae50d0f
- git.kernel.org https://git.kernel.org/stable/c/e19675b384e9dcaca1bd5e4a67b8ad136eccfbe8
Remediation
- git.kernel.org https://git.kernel.org/stable/c/bb3f21edc7056cdf44a7f7bd7ba65af40741838c
- git.kernel.org https://git.kernel.org/stable/c/c73f365707d3b1b78b7d16e1f029020d1ae50d0f
- git.kernel.org https://git.kernel.org/stable/c/e19675b384e9dcaca1bd5e4a67b8ad136eccfbe8