Description

In the Linux kernel, the following vulnerability has been resolved: net: hv_netvsc: reject RSS hash key programming without RX indirection table RSS configuration requires a valid RX indirection table. When the device reports a single receive queue, rndis_filter_device_add() does not allocate an indirection table, accepting RSS hash key updates in this state leads to a hang. Fix this by gating netvsc_set_rxfh() on ndc->rx_table_sz and return -EOPNOTSUPP when the table is absent. This aligns set_rxfh with the device capabilities and prevents incorrect behavior.

INFO

Published Date :

2026-02-04T16:04:23.396Z

Last Modified :

2026-02-09T08:37:52.262Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-23054 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-23054.

URL Resource
https://git.kernel.org/stable/c/11dd9a9ef4dc4507a15a69b8511a0013c6c28fa3 cve-icon cve-icon
https://git.kernel.org/stable/c/4cd55c609e85ae2313248ef1a33619a3eef44a16 cve-icon cve-icon
https://git.kernel.org/stable/c/8288136f508e78eb3563e7073975999cf225a2f9 cve-icon cve-icon
https://git.kernel.org/stable/c/82c9039c8ebb715753a40434df714f865a3aec9c cve-icon cve-icon
https://git.kernel.org/stable/c/d23564955811da493f34412d7de60fa268c8cb50 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026020451-CVE-2026-23054-3712@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-23054 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-23054 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact