CVE-2026-43093
HIGHxsk: tighten UMEM headroom validation to account for tailroom and min frame
Title source: cnaDescription
In the Linux kernel, the following vulnerability has been resolved: xsk: tighten UMEM headroom validation to account for tailroom and min frame The current headroom validation in xdp_umem_reg() could leave us with insufficient space dedicated to even receive minimum-sized ethernet frame. Furthermore if multi-buffer would come to play then skb_shared_info stored at the end of XSK frame would be corrupted. HW typically works with 128-aligned sizes so let us provide this value as bare minimum. Multi-buffer setting is known later in the configuration process so besides accounting for 128 bytes, let us also take care of tailroom space upfront.
References (5)
Core 5
Core References
Scores
CVSS v3
7.8
EPSS
0.0001
EPSS Percentile
2.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (21)
Linux/Linux
< 5.7
Linux/Linux
25c9cdef57488578da21d99eb614b97ffcf6e59f
Linux/Linux
4.19.118 - 4.20
Linux/Linux
5.4.35 - 5.5
Linux/Linux
5.6.7 - 5.7
Linux/Linux
5.7
Linux/Linux
6.12.83 - 6.12.*
Linux/Linux
6.18.24 - 6.18.*
Linux/Linux
6.19.14 - 6.19.*
Linux/Linux
6.6.136 - 6.6.*
... and 11 more
Published
May 06, 2026
Tracked Since
May 06, 2026