Buffer Descriptor Issue in Linux Kernel Found in Xilinx Axienet Driver
CVE-2026-43031

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 1 May 2026

What is CVE-2026-43031?

An issue has been identified in the Linux kernel's handling of transmission packets within the Xilinx Axienet driver. When a transmission (TX) packet spans multiple buffer descriptors (scatter-gather), the mechanism responsible for summing the actual lengths from descriptor status faces a flaw. As a result, the sum of lengths is reset during each NAPI poll, leading to a scenario where data bytes from early sections of a packet can be lost and not credited properly. This mismanagement makes the byte queue limit (BQL) perceive bytes as being indefinitely in-flight, potentially causing a stall in the TX queue. A fix implements the use of skb->len for accurate byte counting, ensuring that partial packets do not contribute erroneously to the accounting process.

Affected Version(s)

Linux c900e49d58eb32b192b6d200ace4ae3ab89779d4 < 2a0323a913109b52bfc9f5ea7b92a1b249e07d3e

Linux c900e49d58eb32b192b6d200ace4ae3ab89779d4 < 3c3a6b9020c01fde7b22e8550105de0b59904f61

Linux c900e49d58eb32b192b6d200ace4ae3ab89779d4

References

https://git.kernel.org/stable/c/2a0323a913109b52bfc9f5ea7...

https://git.kernel.org/stable/c/3c3a6b9020c01fde7b22e8550...

https://git.kernel.org/stable/c/d1978d03e86785872871bff9c...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 1, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43031 Data

JSON