PT-2026-6112 · Linux · Linux Kernel

Published

2026-01-01

Updated

2026-03-25

CVE-2026-23042

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw where a NULL pointer dereference can occur in the idpf idc vport dev down() function. This happens when a virtual port (vport) does not have Remote Direct Memory Access (RDMA) enabled, leading to the vdev info not being allocated. The function then attempts to access vdev info regardless, resulting in the dereference. The issue is triggered when unplugging an auxiliary device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-23042

OPENSUSE-SU-2026:20416-1

SUSE-SU-2026:20838-1

SUSE-SU-2026:20931-1

SUSE-SU-2026:21284-1

Affected Products

Linux Kernel

PT-2026-6112 · Linux · Linux Kernel

CVE-2026-23042

Related Identifiers

Affected Products

References · 394