Main Vulnerability Database SB2026012403

SB2026012403 - Resource management error in Linux kernel google gve driver

Published: January 24, 2026

Security Bulletin ID SB2026012403

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Resource management error (CVE-ID: CVE-2025-71156)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the gve_add_napi() function in drivers/net/ethernet/google/gve/gve_utils.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/3d970eda003441f66551a91fda16478ac0711617
https://git.kernel.org/stable/c/48f9277680925e1a8623d6b2c50aadb7af824ace
https://git.kernel.org/stable/c/f5b7f49bd2377916ad57cbd1210c61196daff013