CVE-2026-45849
MediumCVSS 5.5Exploitation Probability (EPSS)
Low risk3th percentile - higher than 3% of all known CVEs
Summary
In the Linux kernel, the mscc ocelot network driver lacks lock protection in ocelot_port_xmit_inj(). The function calls ocelot_can_inject() and ocelot_port_inject_frame() without holding the injection group lock, potentially causing races. The fix adds ocelot_lock_inj_grp()/ocelot_unlock_inj_grp() around the register injection path.
Risk Assessment
Lack of synchronization may allow concurrent access to injection resources, potentially leading to data corruption or unpredictable network behavior.
Recommendation
It is recommended to immediately update the Linux kernel to a version containing the fix (commit addressing CVE-2026-45849).
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: net: mscc: ocelot: add missing lock protection in ocelot_port_xmit_inj() ocelot_port_xmit_inj() calls ocelot_can_inject() and ocelot_port_inject_frame() without holding the injection group lock. Both functions contain lockdep_assert_held() for the injection lock, and the correct caller felix_port_deferred_xmit() properly acquires the lock using ocelot_lock_inj_grp() before calling these functions. Add ocelot_lock_inj_grp()/ocelot_unlock_inj_grp() around the register injection path to fix the missing lock protection. The FDMA path is not affected as it uses its own locking mechanism.

