Primary

Context

Linux Kernel Memory Leak Vulnerability in XDP_DROP Non-Zero-Copy Mode

Vulnerability

Patched

A memory leak vulnerability has been identified in the Linux kernel's handling of XDP_DROP in non-zero-copy mode, specifically within the ICSSG PRU Ethernet driver. This issue arises because pages dropped by XDP programs in the standard page pool mode are not returned to the page pool, leading to out-of-memory conditions. The vulnerability affects several versions of the Linux kernel.

Impact

The vulnerability can cause out-of-memory conditions by failing to recycle pages back to the page pool, which can lead to resource exhaustion.

Remediation

The vulnerability has been addressed in the Linux kernel. Users can apply the latest patches available in the Linux stable tree to mitigate this issue.

Added: Apr 3, 2026, 5:00 PM

Updated: Apr 3, 2026, 5:00 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.0

remediation

7.7

relevance

5.2

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.0

remediation

7.7

relevance

5.2

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Memory Leak Vulnerability in XDP_DROP Non-Zero-Copy Mode

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating