Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Zero-Copy XDP_TX Action Crash Vulnerability in STMMAC Driver

Vulnerability

A crash vulnerability has been identified in the Linux kernel's STMMAC network driver when using zero-copy XDP_TX actions. This issue arises because the driver fails to properly handle the memory type of XDP buffers, leading to invalid memory mappings and kernel crashes. The vulnerability is present in the Linux kernel stable tree.

Impact

Exploitation of this vulnerability causes a kernel panic, disrupting system operations and potentially leading to a denial of service.

Reproduction

To reproduce this vulnerability, enable zero-copy XDP_TX actions on a network interface using the STMMAC driver. Monitor the system for kernel paging request errors and Oops messages in the crash log, indicating a kernel panic has occurred.

Remediation

Users can apply the available patch in the Linux kernel stable tree to address this vulnerability.

Added: Jan 13, 2026, 4:40 PM
Updated: Jan 13, 2026, 4:40 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
5.7
remediation
7.7
relevance
2.0
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.