CVE-2026-53299
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
26/06/2026
Last modified:
30/06/2026
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
net: airoha: Move ndesc initialization at end of airoha_qdma_init_tx()<br />
<br />
If queue entry list allocation fails in airoha_qdma_init_tx_queue routine,<br />
airoha_qdma_cleanup_tx_queue() will trigger a NULL pointer dereference<br />
accessing the queue entry array. The issue is due to the early ndesc<br />
initialization in airoha_qdma_init_tx_queue(). Fix the issue moving ndesc<br />
initialization at end of airoha_qdma_init_tx routine.



