CVE-2026-43373
HIGH EPSS 39.1%
Published May 8, 20261mo ago · Modified Jun 17, 20262w ago
7.5 CVSS 3.1
Published May 8, 2026 1mo ago
Last Modified Jun 17, 2026 2w ago
Description
In the Linux kernel, the following vulnerability has been resolved: net: ncsi: fix skb leak in error paths Early return paths in NCSI RX and AEN handlers fail to release the received skb, resulting in a memory leak. Specifically, ncsi_aen_handler() returns on invalid AEN packets without consuming the skb. Similarly, ncsi_rcv_rsp() exits early when failing to resolve the NCSI device, response handler, or request, leaving the skb unfreed.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High
Threat Intelligence
EPSS Exploit Probability
39.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-401
Affected Products 10
| Vendor | Product | Version | Range |
|---|---|---|---|
| linux | linux_kernel | * | ≥4.8 – <5.10.253 |
| linux | linux_kernel | * | ≥5.11 – <5.15.203 |
| linux | linux_kernel | * | ≥5.16 – <6.1.167 |
| linux | linux_kernel | * | ≥6.2 – <6.6.130 |
| linux | linux_kernel | * | ≥6.7 – <6.12.78 |
| linux | linux_kernel | * | ≥6.13 – <6.18.19 |
| linux | linux_kernel | * | ≥6.19 – <6.19.9 |
| linux | linux_kernel | 7.0 | any |
| linux | linux_kernel | 7.0 | any |
| linux | linux_kernel | 7.0 | any |
References 8
- git.kernel.org https://git.kernel.org/stable/c/553366c271479c0d571dd1bb5d1bcde4747fb82e
- git.kernel.org https://git.kernel.org/stable/c/59962588197863d0d746879f193905c0c6b3df49
- git.kernel.org https://git.kernel.org/stable/c/5c3398a54266541610c8d0a7082e654e9ff3e259
- git.kernel.org https://git.kernel.org/stable/c/81d6aee32f8f7bbc175c05dbf61f4430bfb88c4a
- git.kernel.org https://git.kernel.org/stable/c/87138dde2d6937b12b967f28fe598a7d59000ae4
- git.kernel.org https://git.kernel.org/stable/c/9891d7f4f1ede473c54b49776ae07755083eef06
- git.kernel.org https://git.kernel.org/stable/c/b70c4e5e711931cdd56e6e905737b72f1e649189
- git.kernel.org https://git.kernel.org/stable/c/fef5aa6e3bcf3c8053307642663a63b7362d7552
Remediation
- git.kernel.org https://git.kernel.org/stable/c/553366c271479c0d571dd1bb5d1bcde4747fb82e
- git.kernel.org https://git.kernel.org/stable/c/59962588197863d0d746879f193905c0c6b3df49
- git.kernel.org https://git.kernel.org/stable/c/5c3398a54266541610c8d0a7082e654e9ff3e259
- git.kernel.org https://git.kernel.org/stable/c/81d6aee32f8f7bbc175c05dbf61f4430bfb88c4a
- git.kernel.org https://git.kernel.org/stable/c/87138dde2d6937b12b967f28fe598a7d59000ae4
- git.kernel.org https://git.kernel.org/stable/c/9891d7f4f1ede473c54b49776ae07755083eef06
- git.kernel.org https://git.kernel.org/stable/c/b70c4e5e711931cdd56e6e905737b72f1e649189
- git.kernel.org https://git.kernel.org/stable/c/fef5aa6e3bcf3c8053307642663a63b7362d7552