CVE-2026-31658
MediumCVSS 5.5Exploitation Probability (EPSS)
Low risk2th percentile - higher than 2% of all known CVEs
Summary
In the Linux kernel, the altera-tse driver had a memory leak. The tse_start_xmit() function did not free the skb buffer after a DMA mapping failure, causing memory leak on every DMA error.
Risk Assessment
Memory leak can exhaust available system memory, leading to performance degradation or system crash, especially in high network traffic environments.
Recommendation
Apply the Linux kernel patch that adds dev_kfree_skb_any() call before returning NETDEV_TX_OK on DMA mapping failure.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: net: altera-tse: fix skb leak on DMA mapping error in tse_start_xmit() When dma_map_single() fails in tse_start_xmit(), the function returns NETDEV_TX_OK without freeing the skb. Since NETDEV_TX_OK tells the stack the packet was consumed, the skb is never freed, leaking memory on every DMA mapping failure. Add dev_kfree_skb_any() before returning to properly free the skb.

