CVE-2026-45849
Gravedad:
Pendiente de análisis
Tipo:
No Disponible / Otro tipo
Fecha de publicación:
27/05/2026
Última modificación:
27/05/2026
Descripción
*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
net: mscc: ocelot: add missing lock protection in ocelot_port_xmit_inj()<br />
<br />
ocelot_port_xmit_inj() calls ocelot_can_inject() and<br />
ocelot_port_inject_frame() without holding the injection group lock.<br />
Both functions contain lockdep_assert_held() for the injection lock,<br />
and the correct caller felix_port_deferred_xmit() properly acquires<br />
the lock using ocelot_lock_inj_grp() before calling these functions.<br />
<br />
Add ocelot_lock_inj_grp()/ocelot_unlock_inj_grp() around the register<br />
injection path to fix the missing lock protection. The FDMA path is not<br />
affected as it uses its own locking mechanism.
Impacto
Referencias a soluciones, herramientas e información
- https://git.kernel.org/stable/c/026f6513c5880c2c89e38ad66bbec2868f978605
- https://git.kernel.org/stable/c/0b217a40156f497e09dd20d3f7baec40c785f386
- https://git.kernel.org/stable/c/51c32ae7fae14552d79f7139614b77c1bbd57a48
- https://git.kernel.org/stable/c/63da961381e0d979459dede713001f8452364477
- https://git.kernel.org/stable/c/7ac58d8832802ec89baa7539e13e6d58a88cce04
- https://git.kernel.org/stable/c/cc1b179f778f98270bdbbb48d183b4b6427ae198



