You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2026 22997
About this tag
CVE-2026-22997 is a Linux kernel vulnerability in the Controller Area Network (CAN) J1939 protocol stack. It involves a reference-counting bug where a second RTS (Request To Send) for an active XTP transfer causes a session leak, preventing virtual CAN interfaces from being unregistered and leading to local denial-of-service conditions. This flaw is particularly relevant in embedded and automotive environments that rely on CAN networking. The tag covers discussions about the vulnerability, its impact on system stability, and patch alerts for Linux systems. Users seeking information on CVE-2026-22997 will find details on the bug's mechanism, affected kernel versions, and mitigation steps.
A subtle reference-counting bug in the Linux kernel’s Controller Area Network (CAN) J1939 stack — tracked as CVE-2026-22997 — can lead to a persistent session leak and local denial-of-service conditions when the kernel receives a second RTS (Request To Send) for an active XTP transfer. The flaw...