CVE-2026-23377

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the Linux kernel’s ice driver related to XDP (eXpress Data Path) Receive Queue (RxQ) handling. The frag size field in XDP RxQ info incorrectly used the DMA write size instead of the expected xdp.frame sz. This discrepancy could lead to negative tailroom calculations, potentially triggering a kernel panic under specific conditions, such as when using the XDP ADJUST TAIL GROW MULTI BUFF xskxceiver test with a large packet size and offset. The fix involves using the fill queue buffer truesize instead of the DMA write size in XDP RxQ info, and applying the correction to ZC mode as well.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.