Segmentation Offload Vulnerability in Linux Kernel Affecting IBM Power Systems Adapters
CVE-2026-46273

8.6HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 3 June 2026

What is CVE-2026-46273?

A segmentation offload vulnerability in the Linux kernel affects certain IBM Power Systems physical adapters, which do not support segmentation offload when the Maximum Segment Size (MSS) is less than 224 bytes. Attempting to send packets with smaller MSS can cause the adapter to freeze, halting all network traffic until a manual reset is performed. This issue has been addressed by implementing a check to disable Generic Segmentation Offload (GSO) for packets with small MSS, ensuring that the network stack falls back to software segmentation. This preventative measure helps maintain normal transmission without adapter freezing under specific conditions, reinforcing the stability and reliability of network operations.

Affected Version(s)

Linux 8641dd85799f85bef5f0d1f87356aaa12cb2195e < 86fc64584811d43c9ccd74447de58620189d8b77

Linux 8641dd85799f85bef5f0d1f87356aaa12cb2195e < 9a5e984d7af910e46dcbed3ce77873e000a4f77d

Linux 8641dd85799f85bef5f0d1f87356aaa12cb2195e < 1cdf5dbcec988d06f5f720bdf89e91073f77fa10

References

https://git.kernel.org/stable/c/86fc64584811d43c9ccd74447...

https://git.kernel.org/stable/c/9a5e984d7af910e46dcbed3ce...

https://git.kernel.org/stable/c/1cdf5dbcec988d06f5f720bdf...

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 3, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-46273 Data

JSON