CVE-2026-23343

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.19.0-rc1+ #21

Description The Linux kernel contained a flaw in the XDP (eXpress Data Path) implementation where a negative tailroom could be calculated. This occurs when ethernet drivers report XDP RX queue frag size as the same as DMA write size, leading to memory corruption issues under certain circumstances. Specifically, the issue arises when the calculated tailroom is negative due to a discrepancy between the reported frag size and the actual DMA write size. This can lead to a tail being grown even when the requested offset is too large, potentially causing unspecific calltraces and general protection faults. The issue was observed in test environments, resulting in segfaults and kernel panics.

Recommendations Update to a version newer than 6.19.0-rc1+ #21.