ByteOS Network

NVD Vulnerability Details :

CVE-2026-23453

Awaiting Analysis

Source-416baaa9-dc9f-4396-8d5f-8c081fb06d67

Published At-03 Apr, 2026 | 16:16

Updated At-27 Apr, 2026 | 14:16

In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: Fix memory leak in XDP_DROP for non-zero-copy mode Page recycling was removed from the XDP_DROP path in emac_run_xdp() to avoid conflicts with AF_XDP zero-copy mode, which uses xsk_buff_free() instead. However, this causes a memory leak when running XDP programs that drop packets in non-zero-copy mode (standard page pool mode). The pages are never returned to the page pool, leading to OOM conditions. Fix this by handling cleanup in the caller, emac_rx_packet(). When emac_run_xdp() returns ICSSG_XDP_CONSUMED for XDP_DROP, the caller now recycles the page back to the page pool. The zero-copy path, emac_rx_packet_zc() already handles cleanup correctly with xsk_buff_free().

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Type: Secondary

Version: 3.1

Base score: 7.5

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Hyperlink	Source	Resource
https://git.kernel.org/stable/c/719d3e71691db7c4f1658ba5a6d1472928121594	416baaa9-dc9f-4396-8d5f-8c081fb06d67	N/A
https://git.kernel.org/stable/c/d16d57dedcb69c1a1257e0638f8698ce1f0ccbe5	416baaa9-dc9f-4396-8d5f-8c081fb06d67	N/A

Hyperlink: https://git.kernel.org/stable/c/719d3e71691db7c4f1658ba5a6d1472928121594

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Resource: N/A

Hyperlink: https://git.kernel.org/stable/c/d16d57dedcb69c1a1257e0638f8698ce1f0ccbe5

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Resource: N/A

CISA Catalog

Metrics

CPE Matches

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History