You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2026-31645
About this tag
CVE-2026-31645 is a Linux kernel vulnerability in the Microchip LAN966x Ethernet driver where two allocation failure paths fail to destroy a previously created page pool, causing a resource leak under specific error conditions. The record is still awaiting full NVD enrichment and no NIST CVSS score has been assigned yet. The upstream kernel fix adds missing page_pool_destroy() calls to complete cleanup. This bug is not associated with exploit kits or ransomware chatter, but it matters for the long life of production systems. Windows Teams can use this as a triage guide for understanding similar resource leak vulnerabilities.
CVE-2026-31645 is not the kind of Linux kernel vulnerability that will dominate headlines with exploit kits, ransomware chatter, or emergency weekend patch calls, but it is exactly the kind of bug that matters in the long life of production systems. The issue sits in the Microchip LAN966x...