In the Linux kernel, the following vulnerability has been resolved:

net: ncsi: fix skb leak in error paths

Early return paths in NCSI RX and AEN handlers fail to release
the received skb, resulting in a memory leak.

Specifically, ncsi_aen_handler() returns on invalid AEN packets
without consuming the skb. Similarly, ncsi_rcv_rsp() exits early
when failing to resolve the NCSI device, response handler, or
request, leaving the skb unfreed.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Linux Linux unaffected
Version Status Constraints
138635cc27c9737f940c3aa80912ff7a61c825af affected < 9891d7f4f1ede473c54b49776ae07755083eef06
138635cc27c9737f940c3aa80912ff7a61c825af affected < fef5aa6e3bcf3c8053307642663a63b7362d7552
138635cc27c9737f940c3aa80912ff7a61c825af affected < 81d6aee32f8f7bbc175c05dbf61f4430bfb88c4a
138635cc27c9737f940c3aa80912ff7a61c825af affected < 59962588197863d0d746879f193905c0c6b3df49
138635cc27c9737f940c3aa80912ff7a61c825af affected < 553366c271479c0d571dd1bb5d1bcde4747fb82e
138635cc27c9737f940c3aa80912ff7a61c825af affected < b70c4e5e711931cdd56e6e905737b72f1e649189
138635cc27c9737f940c3aa80912ff7a61c825af affected < 87138dde2d6937b12b967f28fe598a7d59000ae4
138635cc27c9737f940c3aa80912ff7a61c825af affected < 5c3398a54266541610c8d0a7082e654e9ff3e259
Linux Linux affected
Version Status Constraints
4.8 affected
0 unaffected < 4.8
5.10.253 unaffected ≤ 5.10.*
5.15.203 unaffected ≤ 5.15.*
6.1.167 unaffected ≤ 6.1.*
6.6.130 unaffected ≤ 6.6.*
6.12.78 unaffected ≤ 6.12.*
6.18.19 unaffected ≤ 6.18.*
6.19.9 unaffected ≤ 6.19.*
7.0 unaffected ≤ *

No data.

No data.

No data.

Project Subscriptions

Vendors Products
Linux Subscribe
Linux Kernel Subscribe
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://git.kernel.org/stable/c/553366c271479c0d571dd1bb5d1bcde4747fb82e cve-icon cve-icon
https://git.kernel.org/stable/c/59962588197863d0d746879f193905c0c6b3df49 cve-icon cve-icon
https://git.kernel.org/stable/c/5c3398a54266541610c8d0a7082e654e9ff3e259 cve-icon cve-icon
https://git.kernel.org/stable/c/81d6aee32f8f7bbc175c05dbf61f4430bfb88c4a cve-icon cve-icon
https://git.kernel.org/stable/c/87138dde2d6937b12b967f28fe598a7d59000ae4 cve-icon cve-icon
https://git.kernel.org/stable/c/9891d7f4f1ede473c54b49776ae07755083eef06 cve-icon cve-icon
https://git.kernel.org/stable/c/b70c4e5e711931cdd56e6e905737b72f1e649189 cve-icon cve-icon
https://git.kernel.org/stable/c/fef5aa6e3bcf3c8053307642663a63b7362d7552 cve-icon cve-icon
History

Fri, 08 May 2026 14:45:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: net: ncsi: fix skb leak in error paths Early return paths in NCSI RX and AEN handlers fail to release the received skb, resulting in a memory leak. Specifically, ncsi_aen_handler() returns on invalid AEN packets without consuming the skb. Similarly, ncsi_rcv_rsp() exits early when failing to resolve the NCSI device, response handler, or request, leaving the skb unfreed.
Title net: ncsi: fix skb leak in error paths
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-08T14:21:23.875Z

Reserved: 2026-05-01T14:12:56.006Z

Link: CVE-2026-43373

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-08T15:16:48.423

Modified: 2026-05-08T15:16:48.423

Link: CVE-2026-43373

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses

No weakness.