CVE-2026-45952
Analyzed Analyzed - Analysis Complete
XDP Frame Drop in Linux Kernel fbnic Driver

Publication date: 2026-05-27

Last updated on: 2026-06-16

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: eth: fbnic: Add validation for MTU changes Increasing the MTU beyond the HDS threshold causes the hardware to fragment packets across multiple buffers. If a single-buffer XDP program is attached, the driver will drop all multi-frag frames. While we can't prevent a remote sender from sending non-TCP packets larger than the MTU, this will prevent users from inadvertently breaking new TCP streams. Traditionally, drivers supported XDP with MTU less than 4Kb (packet per page). Fbnic currently prevents attaching XDP when MTU is too high. But it does not prevent increasing MTU after XDP is attached.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-27
Last Modified
2026-06-16
Generated
2026-06-16
AI Q&A
2026-05-27
EPSS Evaluated
2026-06-15
NVD
CVE-2026-45952
EUVD
EUVD-2026-32236
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
linux linux_kernel From 6.19 (inc) to 6.19.4 (exc)
linux linux_kernel From 6.18 (inc) to 6.18.14 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the Linux kernel's fbnic driver related to MTU (Maximum Transmission Unit) changes. Specifically, increasing the MTU beyond the HDS threshold causes the hardware to fragment packets across multiple buffers. If a single-buffer XDP (eXpress Data Path) program is attached, the driver will drop all multi-fragment frames. While remote senders can still send non-TCP packets larger than the MTU, this vulnerability can cause users to inadvertently break new TCP streams because the driver does not prevent increasing the MTU after an XDP program is attached.

Impact Analysis

The impact of this vulnerability is that network communication can be disrupted. When the MTU is increased beyond a certain threshold after attaching a single-buffer XDP program, the driver drops multi-fragment frames. This can lead to dropped packets and broken TCP streams, potentially causing network instability or degraded performance for applications relying on TCP connections.

Mitigation Strategies

To mitigate this vulnerability, ensure that the MTU is not increased after attaching an XDP program on the fbnic driver.

Specifically, avoid increasing the MTU beyond the hardware's HDS threshold once XDP is attached, as the driver currently prevents attaching XDP when MTU is too high but does not prevent MTU increases afterward.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-45952. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart