CVE-2026-23242

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the RDMA/siw component related to header processing. Specifically, a potential NULL pointer dereference can occur in the siw tcp rx data() function if siw get hdr() returns -EINVAL before set rx fpdu context(), leading to qp->rx fpdu being NULL. The error path then attempts to dereference qp->rx fpdu->more ddp segs without a prior check, potentially causing a NULL pointer dereference. The issue is identified through KASAN reports indicating a null-ptr-deref within the specified memory range.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.