HOMEVULNERABILITIESCVE-2026-45940
NONE

CVE-2026-45940

Published: May 27, 2026· Updated: May 27, 2026

Official Description

In the Linux kernel, the following vulnerability has been resolved:

net: stmmac: fix oops when split header is enabled

For GMAC4, when split header is enabled, in some rare cases, the

hardware does not fill buf2 of the first descriptor with payload.

Thus we cannot assume buf2 is always fully filled if it is not

the last descriptor. Otherwise, the length of buf2 of the second

descriptor will be calculated wrong and cause an oops:

Unable to handle kernel paging request at virtual address ffff00019246bfc0

...

x2 : 0000000000000040 x1 : ffff00019246bfc0 x0 : ffff00009246c000

Call trace:

dcache_inval_poc+0x28/0x58 (P)

dma_direct_sync_single_for_cpu+0x38/0x6c

__dma_sync_single_for_cpu+0x34/0x6c

stmmac_napi_poll_rx+0x8f0/0xb60

__napi_poll.constprop.0+0x30/0x144

net_rx_action+0x160/0x274

handle_softirqs+0x1b8/0x1fc

...

To fix this, the PL bit-field in RDES3 register is used for all

descriptors, whether it is the last descriptor or not.

NVD Source

Technical Analysis

CVE-2026-45940 requires local access, meaning attackers must already have a foothold on the target system.

Exploitation requires some privileges, which limits the exposure to scenarios where an attacker has already gained initial access.

Affected Vendors & Products

Mentioned vendors (from description):
Linux
CPE data not yet available in NVD for this CVE.

Exploit & PoC Resources

NO KNOWN EXPLOITNo public exploit confirmed at this time
External links open in a new tab. Always verify in a controlled environment before use.

All References (3)

Quick Facts

CVE IDCVE-2026-45940
SeverityNONE
CISA KEVNo
PublishedMay 27, 2026

Recommended Actions

  • Apply vendor patches immediately
  • Monitor CVE-2026-45940 in threat intel feeds
  • Review IDS/IPS signatures for exploitation attempts
Data sourced from NVD (NIST), CISA KEV, and EPSS (FIRST). Analysis generated by CTIWATCH.COM. CVE data is provided under the NVD usage policy.