CVE-2026-43234 in Linux정보

요약

\~에 의해 VulDB • 2026. 05. 29.

리눅스 커널에서 다음 취약점이 해결되었습니다:

team: 슬레이브(unregistering) 해제 시 NETDEV_CHANGEMTU 이벤트 방지

syzbot이 다음 문제를 보고했습니다.

unregister_netdevice: netdevsim0이 사용 가능해질 때까지 대기 중. 사용 횟수 = 3 ref_tracker: netdev@ffff88807dcf8618는 다음 위치에서 1/2명의 사용자를 보유하고 있습니다. __netdev_tracker_alloc include/linux/netdevice.h:4400 [인라인]
netdev_hold include/linux/netdevice.h:4429 [인라인]
inetdev_init+0x201/0x4e0 net/ipv4/devinet.c:286 inetdev_event+0x251/0x1610 net/ipv4/devinet.c:1600 notifier_call_chain+0x19d/0x3a0 kernel/notifier.c:85 call_netdevice_notifiers_mtu net/core/dev.c:2318 [인라인]
netif_set_mtu_ext+0x5aa/0x800 net/core/dev.c:9886 netif_set_mtu+0xd7/0x1b0 net/core/dev.c:9907 dev_set_mtu+0x126/0x260 net/core/dev_api.c:248 team_port_del+0xb07/0xcb0 drivers/net/team/team_core.c:1333 team_del_slave drivers/net/team/team_core.c:1936 [인라인]
team_device_event+0x207/0x5b0 drivers/net/team/team_core.c:2929 notifier_call_chain+0x19d/0x3a0 kernel/notifier.c:85 call_netdevice_notifiers_extack net/core/dev.c:2281 [인라인]
call_netdevice_notifiers net/core/dev.c:2295 [인라인]
__dev_change_net_namespace+0xcb7/0x2050 net/core/dev.c:12592 do_setlink+0x2ce/0x4590 net/core/rtnetlink.c:3060 rtnl_changelink net/core/rtnetlink.c:3776 [인라인]
__rtnl_newlink net/core/rtnetlink.c:3935 [인라인]
rtnl_newlink+0x15a9/0x1be0 net/core/rtnetlink.c:4072 rtnetlink_rcv_msg+0x7d5/0xbe0 net/core/rtnetlink.c:6958 netlink_rcv_skb+0x232/0x4b0 net/netlink/af_netlink.c:2550 netlink_unicast_kernel net/netlink/af_netlink.c:1318 [인라인]
netlink_unicast+0x80f/0x9b0 net/netlink/af_netlink.c:1344 netlink_sendmsg+0x813/0xb40 net/netlink/af_netlink.c:1894

문제. Ido Schimmel이 재현 단계를 발견했습니다.

ip link add name team1 type team ip link add name dummy1 mtu 1499 master team1 type dummy ip netns add ns1 ip link set dev dummy1 netns ns1 ip -n ns1 link del dev dummy1

또한 동일한 문제가 bond 드라이버에서 commit f51048c3e07b ("bonding: avoid NETDEV_CHANGEMTU event when unregistering slave")로 수정되었음을 발견했습니다.

team 드라이버에서도 유사한 작업을 수행하며, commit ad7c7b2172c3 ("net: hold netdev instance lock during sysfs operations") 및 commit 303a8487a657 ("net: s/__dev_set_mtu/__netif_set_mtu/")도 적용됩니다.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

Linux

예약하다

2026. 05. 01.

모더레이션

수락

항목

VDB-361368

EPSS

0.00013

KEV

아니요

활동

매우 낮음

부문

Pharma, Transportation, ...

출처

MITREhttps://www.cve.org/CVERecord?id=CVE-2026-43234
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2026-43234
CVE Detailshttps://www.cvedetails.com/cve/CVE-2026-43234/

이전개요다음

Do you know our Splunk app?

Download it now for free!