CVE-2026-23445: igc: fix page fault in XDP TX timestamps handling
In the Linux kernel, the following vulnerability has been resolved: igc: fix page fault in XDP TX timestamps handling If an XDP application that requested TX timestamping is shutting down while the link of the interface in use is still up the following kernel splat is reported: [ 883.803618] [ T1554] BUG: unable to handle page fault for address: ffffcfb6200fd008 ... [ 883.803650] [ T1554] Call Trace: [ 883.803652] [ T1554] <TASK> [ 883.803654] [ T1554] igc_ptp_tx_tstamp_event+0xdf/0x160 [igc] [ 883.803660] [ T1554] igc_tsync_interrupt+0x2d5/0x300 [igc] ... During shutdown of the TX ring the xsk_meta pointers are left behind, so that the IRQ handler is trying to touch them. This issue is now being fixed by cleaning up the stale xsk meta data on TX shutdown. TX timestamps on other queues remain unaffected.
Metrics
- CVSS v3.1
- 7.8
- Severity
- HIGH
- Fixed in
- 0
- Affected Products
- 2
Fix available
- Linux / Linux< 5e4c90c94eb766d70e30694b7fe66862aabaf24b (from 15fd021bc4270273d8f4b7f58fdda8a16214a377) · < 31521c124e6488c4a81658e35199feb75a988d86 (from 15fd021bc4270273d8f4b7f58fdda8a16214a377) · < b02fa17d1744d19cd3820bdbf6ec5d85547977bf (from 15fd021bc4270273d8f4b7f58fdda8a16214a377) · < 45b33e805bd39f615d9353a7194b2da5281332df (from 15fd021bc4270273d8f4b7f58fdda8a16214a377)
- Linux / Linux6.10Fixed in 0, 6.12.78, 6.18.20, 6.19.10, 7.0
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H