{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-31658","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2026-03-09T15:48:24.129Z","datePublished":"2026-04-24T14:45:09.566Z","dateUpdated":"2026-05-11T22:13:05.042Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T22:13:05.042Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: altera-tse: fix skb leak on DMA mapping error in tse_start_xmit()\n\nWhen dma_map_single() fails in tse_start_xmit(), the function returns\nNETDEV_TX_OK without freeing the skb. Since NETDEV_TX_OK tells the\nstack the packet was consumed, the skb is never freed, leaking memory\non every DMA mapping failure.\n\nAdd dev_kfree_skb_any() before returning to properly free the skb."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/net/ethernet/altera/altera_tse_main.c"],"versions":[{"version":"bbd2190ce96d8fce031f0526c1f970b68adc9d1a","lessThan":"ae2cd46f57f422b51aedd406ff5d75cbff401d5d","status":"affected","versionType":"git"},{"version":"bbd2190ce96d8fce031f0526c1f970b68adc9d1a","lessThan":"cb1d318702fdf643061350d164250198df4116f2","status":"affected","versionType":"git"},{"version":"bbd2190ce96d8fce031f0526c1f970b68adc9d1a","lessThan":"d5ec406f0543bd6cdfd563b08015fdec8c4d5712","status":"affected","versionType":"git"},{"version":"bbd2190ce96d8fce031f0526c1f970b68adc9d1a","lessThan":"2eb9d67704ca8f1101f7435b85f113ede471f9f2","status":"affected","versionType":"git"},{"version":"bbd2190ce96d8fce031f0526c1f970b68adc9d1a","lessThan":"9f3ec44aeb58501d11834048d5d0dbaeacb6d4e7","status":"affected","versionType":"git"},{"version":"bbd2190ce96d8fce031f0526c1f970b68adc9d1a","lessThan":"60f462cd2716d86bd2174f9d5e035c9278f30480","status":"affected","versionType":"git"},{"version":"bbd2190ce96d8fce031f0526c1f970b68adc9d1a","lessThan":"3aca300e88afe56afb000cdc4c65383014fb17f9","status":"affected","versionType":"git"},{"version":"bbd2190ce96d8fce031f0526c1f970b68adc9d1a","lessThan":"6dede3967619b5944003227a5d09fdc21ed57d10","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/net/ethernet/altera/altera_tse_main.c"],"versions":[{"version":"3.15","status":"affected"},{"version":"0","lessThan":"3.15","status":"unaffected","versionType":"semver"},{"version":"5.10.253","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.203","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.169","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.135","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.82","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.18.23","lessThanOrEqual":"6.18.*","status":"unaffected","versionType":"semver"},{"version":"6.19.13","lessThanOrEqual":"6.19.*","status":"unaffected","versionType":"semver"},{"version":"7.0","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.15","versionEndExcluding":"5.10.253"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.15","versionEndExcluding":"5.15.203"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.15","versionEndExcluding":"6.1.169"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.15","versionEndExcluding":"6.6.135"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.15","versionEndExcluding":"6.12.82"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.15","versionEndExcluding":"6.18.23"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.15","versionEndExcluding":"6.19.13"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.15","versionEndExcluding":"7.0"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/ae2cd46f57f422b51aedd406ff5d75cbff401d5d"},{"url":"https://git.kernel.org/stable/c/cb1d318702fdf643061350d164250198df4116f2"},{"url":"https://git.kernel.org/stable/c/d5ec406f0543bd6cdfd563b08015fdec8c4d5712"},{"url":"https://git.kernel.org/stable/c/2eb9d67704ca8f1101f7435b85f113ede471f9f2"},{"url":"https://git.kernel.org/stable/c/9f3ec44aeb58501d11834048d5d0dbaeacb6d4e7"},{"url":"https://git.kernel.org/stable/c/60f462cd2716d86bd2174f9d5e035c9278f30480"},{"url":"https://git.kernel.org/stable/c/3aca300e88afe56afb000cdc4c65383014fb17f9"},{"url":"https://git.kernel.org/stable/c/6dede3967619b5944003227a5d09fdc21ed57d10"}],"title":"net: altera-tse: fix skb leak on DMA mapping error in tse_start_xmit()","x_generator":{"engine":"bippy-1.2.0"}}}}