CVE Catalog

CVE-2026-53088

CriticalCVSS 9.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.40%

32th percentile — higher than 32% of all known CVEs

Summary

In the Linux kernel, an off-by-one vulnerability was found in the bcmgenet driver's bcmgenet_put_txcb function. The write_ptr points to the next free tx_cb, but the function returned it before rewinding the pointer, causing incorrect cleanup of transmission buffers.

Risk Assessment

This flaw may cause improper management of transmission buffers in the Broadcom GENET network interface, potentially leading to memory leaks, system crashes, or a remote DoS attack.

Recommendation

Immediately update the Linux kernel to a version containing the fix (commit addressing the off-by-one in bcmgenet_put_txcb). Monitor official security advisories from your Linux distribution.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: net: bcmgenet: fix off-by-one in bcmgenet_put_txcb The write_ptr points to the next open tx_cb. We want to return the tx_cb that gets rewinded, so we must rewind the pointer first then return the tx_cb that it points to. That way the txcb can be correctly cleaned up.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS