VDB
CVE-2026-23042
CVE-2026-23042
PUBLISHED
In the Linux kernel, the following vulnerability has been resolved: idpf: fix aux device unplugging when rdma is not supported by vport If vport flags do not contain VIRTCHNL2_VPORT_ENABLE_RDMA, driver does not allocate vdev_info for this vport. This leads to kernel NULL pointer dereference in idpf_idc_vport_dev_down(), which references vdev_info for every vport regardless. Check, if vdev_info was ever allocated before unplugging aux device.
EPSS 0.03% · 8.3th percentile
Risk Scores
EPSS Score
0.03%
8.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux | 6.19, be91128c579c86d295da4325f6ac4710e4e6d2b4, 6.17 |
| linux | linux_kernel | 6.17, 6.17, 6.17 |
Exploit Intelligence
Timeline
- Feb 4, 2026 CVE Published
- Feb 5, 2026 EPSS Score
- Feb 7, 2026 EPSS Score
- Feb 9, 2026 EPSS Score
- Feb 9, 2026 CVE Updated
- Feb 10, 2026 Security Advisory
- Feb 12, 2026 EPSS Score
- Feb 14, 2026 EPSS Score
- Feb 16, 2026 EPSS Score
- Feb 18, 2026 EPSS Score
- Feb 20, 2026 EPSS Score
- Feb 23, 2026 EPSS Score