vulnerability
Amazon Linux 2023: CVE-2026-23445: Important priority package update for kernel6.12 (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:S/C:N/I:N/A:C) | Apr 3, 2026 | May 4, 2026 | May 4, 2026 |
Severity
5
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:C)
Published
Apr 3, 2026
Added
May 4, 2026
Modified
May 4, 2026
Description
A flaw was found in the Linux kernel's igc network driver. When an XDP (eXpress Data Path) application that requests transmit (TX) timestamping is shut down while the network interface link remains active, the driver fails to properly clear stale `xsk_meta` pointers. This improper cleanup can lead to a page fault, potentially causing a system crash and resulting in a Denial of Service (DoS).
Solutions
amazon-linux-2023-upgrade-bpftool6-12amazon-linux-2023-upgrade-bpftool6-12-debuginfoamazon-linux-2023-upgrade-bpftool6-18amazon-linux-2023-upgrade-bpftool6-18-debuginfoamazon-linux-2023-upgrade-kernel6-12amazon-linux-2023-upgrade-kernel6-12-debuginfoamazon-linux-2023-upgrade-kernel6-12-debuginfo-common-aarch64amazon-linux-2023-upgrade-kernel6-12-debuginfo-common-x86-64amazon-linux-2023-upgrade-kernel6-12-develamazon-linux-2023-upgrade-kernel6-12-headersamazon-linux-2023-upgrade-kernel6-12-libbpfamazon-linux-2023-upgrade-kernel6-12-libbpf-debuginfoamazon-linux-2023-upgrade-kernel6-12-libbpf-develamazon-linux-2023-upgrade-kernel6-12-libbpf-staticamazon-linux-2023-upgrade-kernel6-12-modules-extraamazon-linux-2023-upgrade-kernel6-12-modules-extra-commonamazon-linux-2023-upgrade-kernel6-12-toolsamazon-linux-2023-upgrade-kernel6-12-tools-debuginfoamazon-linux-2023-upgrade-kernel6-12-tools-develamazon-linux-2023-upgrade-kernel6-18amazon-linux-2023-upgrade-kernel6-18-debuginfoamazon-linux-2023-upgrade-kernel6-18-debuginfo-common-aarch64amazon-linux-2023-upgrade-kernel6-18-debuginfo-common-x86-64amazon-linux-2023-upgrade-kernel6-18-develamazon-linux-2023-upgrade-kernel6-18-headersamazon-linux-2023-upgrade-kernel6-18-libbpfamazon-linux-2023-upgrade-kernel6-18-libbpf-debuginfoamazon-linux-2023-upgrade-kernel6-18-libbpf-develamazon-linux-2023-upgrade-kernel6-18-libbpf-staticamazon-linux-2023-upgrade-kernel6-18-modules-extraamazon-linux-2023-upgrade-kernel6-18-modules-extra-commonamazon-linux-2023-upgrade-kernel6-18-toolsamazon-linux-2023-upgrade-kernel6-18-tools-debuginfoamazon-linux-2023-upgrade-kernel6-18-tools-develamazon-linux-2023-upgrade-kernel-livepatch-6-12-79-101-147amazon-linux-2023-upgrade-kernel-livepatch-6-18-20-20-229amazon-linux-2023-upgrade-perf6-12amazon-linux-2023-upgrade-perf6-12-debuginfoamazon-linux-2023-upgrade-perf6-18amazon-linux-2023-upgrade-perf6-18-debuginfoamazon-linux-2023-upgrade-python3-perf6-12amazon-linux-2023-upgrade-python3-perf6-12-debuginfoamazon-linux-2023-upgrade-python3-perf6-18amazon-linux-2023-upgrade-python3-perf6-18-debuginfo
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.