Main Vulnerability Database SB2026040675

SB2026040675 - Memory leak in Linux kernel ti icssg driver

Published: April 6, 2026

Security Bulletin ID SB2026040675

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Memory leak (CVE-ID: CVE-2026-23453)

The vulnerability allows a local attacker to cause a denial of service.

The vulnerability exists due to a memory leak in emac_run_xdp() when processing dropped packets in non-zero-copy mode. A local attacker can trigger XDP_DROP in standard page pool mode to cause a denial of service.

This issue affects the icssg-prueth driver and can lead to out-of-memory conditions because pages are not returned to the page pool.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/719d3e71691db7c4f1658ba5a6d1472928121594
https://git.kernel.org/stable/c/d16d57dedcb69c1a1257e0638f8698ce1f0ccbe5