CVE-2026-23042

Published: Feb 4, 2026

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: idpf: fix aux device unplugging when rdma is not supported by vport If vport flags do not contain VIRTCHNL2_VPORT_ENABLE_RDMA, driver does not allocate vdev_info for this vport. This leads to kernel NULL pointer dereference in idpf_idc_vport_dev_down(), which references vdev_info for every vport regardless. Check, if vdev_info was ever allocated before unplugging aux device.

Vendor	Product	Versions
Linux	Linux	affected `be91128c579c86d295da4325f6ac4710e4e6d2b4 - < 0ad6d6e50e9d8bf596cfe77a882ddc20b29f525a` affected `be91128c579c86d295da4325f6ac4710e4e6d2b4 - < 4648fb2f2e7210c53b85220ee07d42d1e4bae3f9`
Linux	Linux	affected `6.17` unaffected `0 - < 6.17` unaffected `6.18.6 - <= 6.18.` unaffected `6.19 - <= `

References

https://git.kernel.org/stable/c/0ad6d6e50e9d8bf596cfe77a882ddc20b29f525a

https://git.kernel.org/stable/c/4648fb2f2e7210c53b85220ee07d42d1e4bae3f9

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-23042

Description

Affected Products

References