CVE-2026-23242

HIGH EPSS 30.7%
Published Mar 18, 20263mo ago · Modified Jun 17, 20261w ago
7.5 CVSS 3.1
High
Find Similar
Published Mar 18, 2026 3mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix potential NULL pointer dereference in header processing If siw_get_hdr() returns -EINVAL before set_rx_fpdu_context(), qp->rx_fpdu can be NULL. The error path in siw_tcp_rx_data() dereferences qp->rx_fpdu->more_ddp_segs without checking, which may lead to a NULL pointer deref. Only check more_ddp_segs when rx_fpdu is present. KASAN splat: [ 101.384271] KASAN: null-ptr-deref in range [0x00000000000000c0-0x00000000000000c7] [ 101.385869] RIP: 0010:siw_tcp_rx_data+0x13ad/0x1e50

CVSS Details

Base Score
7.5
Exploitability
3.9
Impact
3.6
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
30.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 8

VendorProductVersionRange
linuxlinux_kernel*≥5.3.1  –  <5.10.252
linuxlinux_kernel*≥5.11  –  <5.15.202
linuxlinux_kernel*≥5.16  –  <6.1.165
linuxlinux_kernel*≥6.2  –  <6.6.128
linuxlinux_kernel*≥6.7  –  <6.12.75
linuxlinux_kernel*≥6.13  –  <6.18.14
linuxlinux_kernel*≥6.19  –  <6.19.4
linuxlinux_kernel5.3any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/14ab3da122bd18920ad57428f6cf4fade8385142
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/714c99e1dc8f85f446e05be02ba83972e981a817
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8564dcc12fbb372d984ab45768cae9335777b274
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/87b7a036d2c73d5bb3ae2d47dee23de465db3355
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ab61841633d10e56a58c1493a262f0d02dba2f5e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ab957056192d6bd068b3759cb2077d859cca01f0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ce025f7f5d070596194315eb2e4e89d568b8a755
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ffba40b67663567481fa8a1ed5d2da36897c175d
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/14ab3da122bd18920ad57428f6cf4fade8385142
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/714c99e1dc8f85f446e05be02ba83972e981a817
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8564dcc12fbb372d984ab45768cae9335777b274
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/87b7a036d2c73d5bb3ae2d47dee23de465db3355
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ab61841633d10e56a58c1493a262f0d02dba2f5e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ab957056192d6bd068b3759cb2077d859cca01f0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ce025f7f5d070596194315eb2e4e89d568b8a755
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ffba40b67663567481fa8a1ed5d2da36897c175d
    Patch