CVE Catalog

CVE-2026-53086

CriticalCVSS 9.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.39%

30th percentile — higher than 30% of all known CVEs

Summary

In the Linux kernel, a race condition was found in the bcmgenet driver's timeout handler. The handler aggressively stopped all transmit queues when only one queue timed out, causing race conditions with other active queues.

Risk Assessment

The organization faces network instability and potential service disruptions due to faulty queue management, leading to packet loss and performance degradation.

Recommendation

Immediately update the Linux kernel to a version containing the fix that restarts only the timed-out queue, eliminating race conditions.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: net: bcmgenet: fix racing timeout handler The bcmgenet_timeout handler tries to take down all tx queues when a single queue times out. This is over zealous and causes many race conditions with queues that are still chugging along. Instead lets only restart the timed out queue.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS