What is GHSA-h2vh-mr24-cxmc?

GHSA-h2vh-mr24-cxmc is a security advisory published by GitHub Security Advisories with unknown severity. In the Linux kernel, the following vulnerability has been resolved: 8021q: delete cleared egress...

Which CVE IDs does GHSA-h2vh-mr24-cxmc cover?

GHSA-h2vh-mr24-cxmc covers the following CVE IDs: CVE-2026-46153. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

GHSA-h2vh-mr24-cxmcunknown

In the Linux kernel, the following vulnerability has been resolved: 8021q: delete cleared egress...

Vendor

GitHub Security Advisories

Published

May 28, 2026

Last Modified

May 28, 2026

🔗 CVE IDs covered (1)

CVE-2026-46153 →

📋 Description

In the Linux kernel, the following vulnerability has been resolved:

8021q: delete cleared egress QoS mappings

vlan_dev_set_egress_priority() currently keeps cleared egress priority mappings in the hash as tombstones. Repeated set/clear cycles with distinct skb priorities therefore accumulate mapping nodes until device teardown and leak memory.

Delete mappings when vlan_prio is cleared instead of keeping tombstones. Now that the egress mapping lists are RCU protected, the node can be unlinked safely and freed after a grace period.

🔗 References (4)

https://nvd.nist.gov/vuln/detail/CVE-2026-46153
https://git.kernel.org/stable/c/7dddc74af369478ba7f9bc136d0fc1dc4570cb66
https://git.kernel.org/stable/c/a52e122c9e4d56ad9a03b32c915a199276d989c3
https://github.com/advisories/GHSA-h2vh-mr24-cxmc