CVE-2026-23084
Published: Feb 4, 2026
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: be2net: Fix NULL pointer dereference in be_cmd_get_mac_from_list When the parameter pmac_id_valid argument of be_cmd_get_mac_from_list() is set to false, the driver may request the PMAC_ID from the firmware of the network card, and this function will store that PMAC_ID at the provided address pmac_id. This is the contract of this function. However, there is a location within the driver where both pmac_id_valid == false and pmac_id == NULL are being passed. This could result in dereferencing a NULL pointer. To resolve this issue, it is necessary to pass the address of a stub variable to the function.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 95046b927a54f461766f83a212c6a93bc5fd2e67 - < 4cba480c9b9a3861a515262225cb53a1f5978344affected 95046b927a54f461766f83a212c6a93bc5fd2e67 - < 92c6dc181a18e6e0ddb872ed35cb48a9274829e4affected 95046b927a54f461766f83a212c6a93bc5fd2e67 - < 6c3e00888dbec887125a08b51a705b9b163fcdd1affected 95046b927a54f461766f83a212c6a93bc5fd2e67 - < e206fb415db36bad52bb90c08d46ce71ffbe8a80affected 95046b927a54f461766f83a212c6a93bc5fd2e67 - < 47ffb4dcffe336f4a7bd0f3284be7aadc6484698+2 more versions |
Linux | Linux | affected 3.12unaffected 0 - < 3.12unaffected 5.10.249 - <= 5.10.*unaffected 5.15.199 - <= 5.15.*unaffected 6.1.162 - <= 6.1.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now