VDB

CVE-2026-23042

CVE-2026-23042 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: idpf: fix aux device unplugging when rdma is not supported by vport If vport flags do not contain VIRTCHNL2_VPORT_ENABLE_RDMA, driver does not allocate vdev_info for this vport. This leads to kernel NULL pointer dereference in idpf_idc_vport_dev_down(), which references vdev_info for every vport regardless. Check, if vdev_info was ever allocated before unplugging aux device.

EPSS 0.03% · 8.3th percentile

Risk Scores

EPSS Score
0.03%
8.3th percentile

Affected Products

VendorProductVersions
LinuxLinux6.19, be91128c579c86d295da4325f6ac4710e4e6d2b4, 6.17
linuxlinux_kernel6.17, 6.17, 6.17

Timeline

  • Feb 4, 2026 CVE Published
  • Feb 5, 2026 EPSS Score
  • Feb 7, 2026 EPSS Score
  • Feb 9, 2026 EPSS Score
  • Feb 9, 2026 CVE Updated
  • Feb 10, 2026 Security Advisory
  • Feb 12, 2026 EPSS Score
  • Feb 14, 2026 EPSS Score
  • Feb 16, 2026 EPSS Score
  • Feb 18, 2026 EPSS Score
  • Feb 20, 2026 EPSS Score
  • Feb 23, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›