HIGH
net/spacemit DMA Leak
CVE-2026-43462
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
KernelScan AI3.3LOW
01Description
In the Linux kernel, the following vulnerability has been resolved: net: spacemit: Fix error handling in emac_tx_mem_map() The DMA mappings were leaked on mapping error. Free them with the existing emac_free_tx_buf() function.
02KernelScan AI Analysis
Risk summary
Systems using SpacemiT K1 Ethernet hardware may experience DMA mapping resource leaks when network transmission fails during DMA setup. This could eventually lead to resource exhaustion and degraded network performance under sustained error conditions.
Vulnerability analysis
The emac_tx_mem_map() function in the SpacemiT K1 Ethernet driver fails to clean up successfully created DMA mappings when subsequent mapping operations fail. The error path only frees the socket buffer but leaves DMA resources allocated, causing a resource leak. The fix adds proper cleanup by iterating through all successfully mapped descriptors and calling emac_free_tx_buf() to release the DMA mappings. This vulnerability requires local access to trigger network operations and specific failure conditions during DMA mapping setup.
03Fix Versions
| Branch | Fixed in | Patch commit |
|---|---|---|
| 6.18 | 6.18.19 | c34ebd7b24ea |
| 6.19 | 6.19.9 | edeaba385318 |
| mainline | 7.0 | 86292155bea5 |