Description
In the Linux kernel, the following vulnerability has been resolved:

octeontx2-af: Workaround SQM/PSE stalls by disabling sticky

NIX SQ manager sticky mode is known to cause stalls when multiple SQs
share an SMQ and transmit concurrently. Additionally, PSE may deadlock
on transitions between sticky and non-sticky transmissions. There is
also a credit drop issue observed when certain condition clocks are
gated.

work around these hardware errata by:
- Disabling SQM sticky operation:
- Clear TM6 (bit 15)
- Clear TM11 (bit 14)
- Disabling sticky → non-sticky transition path that can deadlock PSE:
- Clear TM5 (bit 23)
- Preventing credit drops by keeping the control-flow clock enabled:
- Set TM9 (bit 21)

These changes are applied via NIX_AF_SQM_DBG_CTL_STATUS. With this
configuration the SQM/PSE maintain forward progress under load without
credit loss, at the cost of disabling sticky optimizations.
Published: 2026-05-08
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The kernel bug involves the NIX SQ manager sticky mode. With multiple SQs sharing an SMQ and transmitting at the same time, sticky mode can cause stalls, while transitions between sticky and non‑sticky transmissions may deadlock PSE. Additionally, a credit drop can happen when certain condition clocks are gated. These hardware errata result in performance degradation, potential service disruption, or complete deadlock and are mitigated by disabling sticky optimizations.

Affected Systems

The issue affects Linux kernel deployments that run on OcteonTX2 processors using the NIX interface. All kernel versions that support the affected hardware are potentially impacted. The affected component is the NIX AF SQM debug control/status register accessed through the kernel.

Risk and Exploitability

EPSS score is < 1%, which suggests a very low probability of exploitation. The flaw is not exposed via a network or software interface that would allow a remote attacker to trigger it; this inference is based on the description, which indicates a hardware errata that manifests under specific in‑kernel conditions. A workload that stresses the hardware could trigger the stalls, but no publicly known exploit exists, and the issue does not appear in the CISA KEV catalog. The CVSS score of 7.5 indicates high severity. Therefore, the overall risk is high, but it remains largely a concern for availability and performance rather than a direct security compromise.

Generated by OpenCVE AI on May 15, 2026 at 16:38 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the kernel change that clears bits TM6 (bit 15) and TM11 (bit 14) in NIX_AF_SQM_DBG_CTL_STATUS to disable SQM sticky operation.
  • Clear bit 23 (TM5) in NIX_AF_SQM_DBG_CTL_STATUS to prevent deadlocking between sticky and non‑sticky PSE transmissions.
  • Set bit 21 (TM9) in NIX_AF_SQM_DBG_CTL_STATUS to keep the control‑flow clock enabled and avoid credit drops.
  • Deploy the patched kernel on all OcteonTX2‑based hosts, ensuring the NIX_AF_SQM_DBG_CTL_STATUS register is updated accordingly.

Generated by OpenCVE AI on May 15, 2026 at 16:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-4606-1 linux security update
History

Fri, 15 May 2026 15:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-667

Mon, 11 May 2026 09:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-361

Mon, 11 May 2026 07:45:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

 cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

Sat, 09 May 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-833
References
Metrics threat_severity

None

 cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Moderate

Fri, 08 May 2026 16:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-361

Fri, 08 May 2026 13:30:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Workaround SQM/PSE stalls by disabling sticky NIX SQ manager sticky mode is known to cause stalls when multiple SQs share an SMQ and transmit concurrently. Additionally, PSE may deadlock on transitions between sticky and non-sticky transmissions. There is also a credit drop issue observed when certain condition clocks are gated. work around these hardware errata by: - Disabling SQM sticky operation: - Clear TM6 (bit 15) - Clear TM11 (bit 14) - Disabling sticky → non-sticky transition path that can deadlock PSE: - Clear TM5 (bit 23) - Preventing credit drops by keeping the control-flow clock enabled: - Set TM9 (bit 21) These changes are applied via NIX_AF_SQM_DBG_CTL_STATUS. With this configuration the SQM/PSE maintain forward progress under load without credit loss, at the cost of disabling sticky optimizations.
Title octeontx2-af: Workaround SQM/PSE stalls by disabling sticky
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-11T22:21:48.777Z

Reserved: 2026-05-01T14:12:55.999Z

Link: CVE-2026-43296

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-05-08T14:16:36.727

Modified: 2026-05-15T15:03:44.770

Link: CVE-2026-43296

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-05-08T00:00:00Z

Links: CVE-2026-43296 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-15T16:45:03Z

Weaknesses