octeontx2-af: Workaround SQM/PSE stalls by disabling sticky_CVE-2026-43296

7.5 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Description

In the Linux kernel, the following vulnerability has been resolved:

octeontx2-af: Workaround SQM/PSE stalls by disabling sticky

NIX SQ manager sticky mode is known to cause stalls when multiple SQs
share an SMQ and transmit concurrently. Additionally, PSE may deadlock
on transitions between sticky and non-sticky transmissions. There is
also a credit drop issue observed when certain condition clocks are
gated.

work around these hardware errata by:
- Disabling SQM sticky operation:
- Clear TM6 (bit 15)
- Clear TM11 (bit 14)
- Disabling sticky → non-sticky transition path that can deadlock PSE:
- Clear TM5 (bit 23)
- Preventing credit drops by keeping the control-flow clock enabled:
- Set TM9 (bit 21)

These changes are applied via NIX_AF_SQM_DBG_CTL_STATUS. With this
configuration the SQM/PSE maintain forward progress under load without
credit loss, at the cost of disabling sticky optimizations.

Basic Information

ID CVE-2026-43296

Source Linux

Published May 8, 2026 at 13:11

Modified May 11, 2026 at 06:32

Affected Product

Vendor Linux

Product Linux

Version 5d9b976d4480dc0dcfa3719b645636d2f0f9f156

Affected Versions Linux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156
Linux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156
Linux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156
Linux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156
Linux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156
Linux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156
Linux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156
Linux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156
Linux Linux 5.5

References

{
    "lastseen": "",
    "description": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-af: Workaround SQM/PSE stalls by disabling sticky\n\nNIX SQ manager sticky mode is known to cause stalls when multiple SQs\nshare an SMQ and transmit concurrently. Additionally, PSE may deadlock\non transitions between sticky and non-sticky transmissions. There is\nalso a credit drop issue observed when certain condition clocks are\ngated.\n\nwork around these hardware errata by:\n- Disabling SQM sticky operation:\n  - Clear TM6 (bit 15)\n  - Clear TM11 (bit 14)\n- Disabling sticky \u2192 non-sticky transition path that can deadlock PSE:\n  - Clear TM5 (bit 23)\n- Preventing credit drops by keeping the control-flow clock enabled:\n  - Set TM9 (bit 21)\n\nThese changes are applied via NIX_AF_SQM_DBG_CTL_STATUS. With this\nconfiguration the SQM/PSE maintain forward progress under load without\ncredit loss, at the cost of disabling sticky optimizations.",
    "published": "2026-05-08T13:11:18.870Z",
    "modified": "2026-05-11T06:32:59.478Z",
    "type": "cve",
    "title": "octeontx2-af: Workaround SQM/PSE stalls by disabling sticky",
    "source": "Linux",
    "references": "https://git.kernel.org/stable/c/9a3fd301329474f449e75f86d8a4f6b9c603fd6c\nhttps://git.kernel.org/stable/c/d0b3c8a80336029d9356f429151eb27922d80a3c\nhttps://git.kernel.org/stable/c/36cc5a5e0178d5fb79e04173b8aa623b0108819a\nhttps://git.kernel.org/stable/c/d9b549b6951ba178ec14339a031cae65f4e43fe1\nhttps://git.kernel.org/stable/c/cec2ceb35ce7bc874c43812bb39200d6cf691b87\nhttps://git.kernel.org/stable/c/8052d0587fb14b85539c3a14a226586c0c3d6b4c\nhttps://git.kernel.org/stable/c/b7eba260a34e854e2487b8363c11976f082df00d\nhttps://git.kernel.org/stable/c/70e9a5760abfb6338d63994d4de6b0778ec795d6",
    "id": "CVE-2026-43296",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "Linux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156\nLinux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156\nLinux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156\nLinux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156\nLinux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156\nLinux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156\nLinux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156\nLinux Linux 5d9b976d4480dc0dcfa3719b645636d2f0f9f156\nLinux Linux 5.5",
    "sourceHref": "",
    "cvss": {
        "score": 7.5,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Linux",
    "version": "5d9b976d4480dc0dcfa3719b645636d2f0f9f156",
    "vendor": "Linux",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

Affected Product

References

💭 Join the Security Discussion ❌ Cancel Reply