Description
In the Linux kernel, the following vulnerability has been resolved:

net: ipa: fix GENERIC_CMD register field masks for IPA v5.0+

Fix the field masks to match the hardware layout documented in
downstream GSI (GSI_V3_0_EE_n_GSI_EE_GENERIC_CMD_*).

Notably this fixes a WARN I was seeing when I tried to send "stop"
to the MPSS remoteproc while IPA was up.
Published: 2026-05-06
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

In the Linux kernel the field masks used by the Integrated Packet Adapter (IPA) subsystem were incorrect for IPA version 5.0 and newer. The mismatch caused the kernel to interpret hardware register values incorrectly and produced a warning when the remote processor service attempted to stop IPA. The bug does not expose data or allow arbitrary code execution; it only results in a stability warning and potential unintended state changes in the IPA subsystem.

Affected Systems

The affected product is the Linux kernel, as indicated by the CPE string. No specific kernel release numbers are listed in the data, so all kernel builds that include the IPA v5.0+ code path are potentially impacted until the fix is applied.

Risk and Exploitability

This issue is not listed in the CISA Known Exploited Vulnerabilities catalog and the EPSS score is < 1%, indicating a low probability of exploitation. The CVSS score of 5.5 denotes a medium severity. Because the vulnerability is a correctness bug rather than a security flaw, it is unlikely to be actively exploited and the risk is low. There is no documented attack vector; the only observable effect is the kernel warning and any associated instability.

Generated by OpenCVE AI on May 7, 2026 at 01:46 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest Linux kernel update that contains the commit fixing the IPA register mask (for example, the patch from commit 2aa50d2c1f63).
  • Reboot the system after patching so the kernel change takes effect.
  • Execute the MPSS remoteproc stop command while IPA is running to confirm that no warning appears and the system remains stable.

Generated by OpenCVE AI on May 7, 2026 at 01:46 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 07 May 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-1288
References
Metrics threat_severity

None

 cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Moderate

Wed, 06 May 2026 12:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-704

Wed, 06 May 2026 09:30:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: net: ipa: fix GENERIC_CMD register field masks for IPA v5.0+ Fix the field masks to match the hardware layout documented in downstream GSI (GSI_V3_0_EE_n_GSI_EE_GENERIC_CMD_*). Notably this fixes a WARN I was seeing when I tried to send "stop" to the MPSS remoteproc while IPA was up.
Title net: ipa: fix GENERIC_CMD register field masks for IPA v5.0+
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-11T22:17:21.426Z

Reserved: 2026-05-01T14:12:55.983Z

Link: CVE-2026-43081

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-06T10:16:21.260

Modified: 2026-05-06T13:08:07.970

Link: CVE-2026-43081

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-05-06T00:00:00Z

Links: CVE-2026-43081 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-07T02:00:18Z

Weaknesses