HIGHCVE-2026-43373Published 2026-05-08Modified 2026-05-11CNA Linux

CVE-2026-43373: net: ncsi: fix skb leak in error paths

In the Linux kernel, the following vulnerability has been resolved: net: ncsi: fix skb leak in error paths Early return paths in NCSI RX and AEN handlers fail to release the received skb, resulting in a memory leak. Specifically, ncsi_aen_handler() returns on invalid AEN packets without consuming the skb. Similarly, ncsi_rcv_rsp() exits early when failing to resolve the NCSI device, response handler, or request, leaving the skb unfreed.

CVSS v3.1: 7.5
Severity: HIGH
Fixed in: 0
Affected Products: 2

Fix available

05.10.2535.15.203553366c271479c0d571dd1bb5d1bcde4747fb82e59962588197863d0d746879f193905c0c6b3df495c3398a54266541610c8d0a7082e654e9ff3e2596.1.1676.6.1306.12.786.18.196.19.97.081d6aee32f8f7bbc175c05dbf61f4430bfb88c4a87138dde2d6937b12b967f28fe598a7d59000ae49891d7f4f1ede473c54b49776ae07755083eef06b70c4e5e711931cdd56e6e905737b72f1e649189fef5aa6e3bcf3c8053307642663a63b7362d7552

Affected packages

Linux / Linux
< 9891d7f4f1ede473c54b49776ae07755083eef06 (from 138635cc27c9737f940c3aa80912ff7a61c825af) · < fef5aa6e3bcf3c8053307642663a63b7362d7552 (from 138635cc27c9737f940c3aa80912ff7a61c825af) · < 81d6aee32f8f7bbc175c05dbf61f4430bfb88c4a (from 138635cc27c9737f940c3aa80912ff7a61c825af) · < 59962588197863d0d746879f193905c0c6b3df49 (from 138635cc27c9737f940c3aa80912ff7a61c825af) · < 553366c271479c0d571dd1bb5d1bcde4747fb82e (from 138635cc27c9737f940c3aa80912ff7a61c825af) · < b70c4e5e711931cdd56e6e905737b72f1e649189 (from 138635cc27c9737f940c3aa80912ff7a61c825af)
Linux / Linux
4.8
Fixed in 0, 5.10.253, 5.15.203, 6.1.167, 6.6.130, 6.12.78, 6.18.19, 6.19.9, 7.0

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Metrics

Fix available