CVE-2026-43346
Received Received - Intake

Linux kernel PTP Control Unavailable Warning Fix

Vulnerability report for CVE-2026-43346, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-05-08

Last updated on: 2026-05-08

Assigner: kernel.org

Description

In the Linux kernel, the following vulnerability has been resolved: ice: ptp: don't WARN when controlling PF is unavailable In VFIO passthrough setups, it is possible to pass through only a PF which doesn't own the source timer. In that case the PTP controlling PF (adapter->ctrl_pf) is never initialized in the VM, so ice_get_ctrl_ptp() returns NULL and triggers WARN_ON() in ice_ptp_setup_pf(). Since this is an expected behavior in that configuration, replace WARN_ON() with an informational message and return -EOPNOTSUPP.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-05-08
Last Modified
2026-05-08
Generated
2026-07-09
AI Q&A
2026-05-09
EPSS Evaluated
2026-07-08
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
intel ice *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Detection Guidance

This vulnerability relates to the Linux kernel's handling of the ice driver in VFIO passthrough setups, specifically when the Physical Function (PF) controlling the Precision Time Protocol (PTP) is unavailable. Detection would involve monitoring kernel logs for WARN_ON() messages triggered by ice_ptp_setup_pf() when ice_get_ctrl_ptp() returns NULL.

Since the fix replaces WARN_ON() with an informational message and returns -EOPNOTSUPP, detection prior to the fix would involve identifying WARN_ON() kernel warnings related to ice_ptp_setup_pf().

Suggested commands to detect this issue include checking kernel logs for relevant warnings:

  • dmesg | grep ice_ptp_setup_pf
  • journalctl -k | grep WARN | grep ice
  • grep WARN /var/log/kern.log | grep ice
Executive Summary

This vulnerability involves the Linux kernel's handling of the ice network driver in VFIO passthrough setups. Specifically, when only a Physical Function (PF) that does not own the source timer is passed through, the controlling PF (adapter->ctrl_pf) is not initialized in the virtual machine (VM). As a result, the function ice_get_ctrl_ptp() returns NULL, which triggers a WARN_ON() warning in the ice_ptp_setup_pf() function.

Since this behavior is expected in such configurations, the fix replaces the WARN_ON() warning with an informational message and returns an error code -EOPNOTSUPP to indicate the operation is not supported.

Impact Analysis

This issue causes an unnecessary warning (WARN_ON) in the Linux kernel when using VFIO passthrough with certain configurations of the ice network driver. While it does not lead to a security breach or system compromise, it may cause confusion or concern due to the warning messages.

The fix prevents these warnings by properly handling the case where the controlling PF is unavailable, returning an appropriate error instead. Therefore, the impact is primarily related to system log noise and potential misinterpretation of normal behavior as an error.

Mitigation Strategies

The vulnerability is addressed by updating the Linux kernel to a version where the ice driver no longer triggers WARN_ON() when the controlling PF is unavailable in VFIO passthrough setups.

Immediate mitigation steps include:

  • Update the Linux kernel to the fixed version that replaces WARN_ON() with an informational message and returns -EOPNOTSUPP.
  • Avoid configurations where only a PF without the source timer is passed through, if possible.
  • Monitor kernel logs for related warnings or informational messages to ensure the issue is resolved.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-43346. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart