CVE-2026-22993

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the idpf driver related to RSS LUT handling after a soft reset. Specifically, a NULL pointer dereference can occur if an ethtool command accessing the RSS LUT is executed immediately following a soft reset, before the interface is brought up. This happens because the RSS LUT is freed during the reset process and is not restored unless the interface is active. The issue does not arise if the soft reset does not involve a change in the queue count. The vulnerability is triggered when attempting to access the RSS LUT without proper initialization, leading to a kernel panic. The steps to reproduce involve bringing an interface down, updating the queue count using ethtool -L, and then attempting to display the RSS LUT using ethtool -x. The function idpf get rxfh is implicated in the crash.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.