CVE-2026-43260

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the bnxt en driver regarding the RSS context delete logic. The driver incorrectly used a netif running() check when deleting an RSS context, which caused VNICs (Virtual Network Interface Cards) to leak in the firmware whenever a close() operation occurred with active RSS contexts. During a subsequent open() operation, the driver attempts to create extra VNICs during RSS context restoration without prior reservation, which may lead the firmware to fail the request and result in the loss of active RSS contexts.

Recommendations Remove the netif running() condition check when deleting an RSS context.