CVE-2026-53316

The CVE affects the Linux kernel DRM/AMD ras subsystem. A NULL pointer dereference could occur in ras_core_ras_interrupt_detected when ras_core is NULL and ras_core->dev is accessed in the error path. The issue has been resolved with a fix in the kernel code (details referenced in the advisory...

EUVD-2026-39848

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference in dcdmubsrv error paths In dcdmubsrvlogdiagnosticdata and dcdmubsrvenabledpiatrace. Both functions check: if !dcdmubsrv || !dcdmubsrv-dmub and then call DCLOGERROR inside that block...

EUVD-2026-39836

In the Linux kernel, the following vulnerability has been resolved: reset: amlogic: t7: Fix null reset ops Fix missing reset ops causing kernel null pointer dereference. This SOC's reset is currently not used yet...

CVE-2026-53008

A flaw was found in the Linux kernel. A race condition exists in the ice network driver's TX timestamp ring cleanup, specifically between the icefreetxtstampring and icetxmap functions. This vulnerability could allow a local attacker to trigger a null pointer dereference, leading to a system cras...

CVE-2026-53111

A flaw was found in the Linux kernel. The bpflwtxmitpushencap helper in the Berkeley Packet Filter BPF subsystem attempts to access an uninitialized network device structure during certain test runs. A local user can exploit this null pointer dereference by executing the bpflwtpushipencap functio...

CVE-2026-53032

A flaw was found in the Linux kernel's Berkeley Packet Filter BPF subsystem. This vulnerability occurs in the mapkptrmatchtype function when a scalar register is stored into a kernel pointer kptr slot. Due to an incorrect order of checks, the system attempts to access a null pointer, specifically...

CVE-2026-53042

A flaw was found in the Linux kernel's fwctl module. An issue with the class initialization ordering can lead to a null pointer dereference when a device is removed. This can cause a system crash, resulting in a Denial of Service DoS...

CVE-2026-57875 GV-LPC2011/LPC2211 - unauthorized null pointer dereference vulnerability in packet parsing

An unauthenticated NULL pointer dereference vulnerability exists in the HTTP request parsing logic of multiple CGI components in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by improper validation of required HTTP request metadata before it is used by the...

CVE-2026-57875

GeoVision GV-LPC2011 and GV-LPC2211 components (GV-LPC2011/LPC2211 V1.12 and earlier) contain an unauthenticated NULL pointer dereference in the HTTP request parsing logic. The root cause is improper validation of required HTTP request metadata before use by the affected CGI components, allowing ...

CVE-2026-57873

GeoVision GV-LPC2011 and GV-LPC2211 (V1.12 and earlier) are affected by CVE-2026-57873 due to an unauthenticated NULL pointer dereference in the IEEE8021x_upload.cgi handler. The root cause is improper validation of multipart upload headers when processing certificate-related upload fields, which...

CVE-2026-53012

A flaw was found in the Linux kernel's networking subsystem. When an IPv6 nexthop is replaced with an IPv4 nexthop, a flag indicating the presence of IPv4 members in nexthop groups is not correctly updated. This can lead to IPv6 routes referencing groups that only contain IPv4 members. A local...

CVE-2026-9716

CVE-2026-9716 describes a CWE-476 NULL Pointer Dereference that could cause a denial-of-service, rendering a device’s HMI and configuration functionality unavailable when malformed requests hit exposed network interfaces. The root cause is a NULL pointer dereference; impact is high availability l...

CVE-2026-9716

CWE-476 NULL Pointer Dereference vulnerability exists that could cause a denial-of-service condition, rendering the device’s HMI and configuration functionality unavailable when malformed requests are received over exposed network interfaces...

CVE-2026-53214

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix a potential NPD in cleanupprefixroute addrconfgetprefixroute can return the fib6nullentry sentinel entry which has a NULL fib6table pointer. Therefore, before setting the route's expiration time, check that we are not...

CVE-2026-53214

The CVE-2026-53214 entry documents a Linux kernel IPv6 issue where addrconf_get_prefix_route() may return the fib6_null_entry sentinel, which has a NULL fib6_table pointer. If code subsequently sets a route’s expiration time without validating the entry, a null pointer dereference (NPD) can occur...

CVE-2026-53177

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix NULL pointer dereference PCIe errors detected by a Root Port or Downstream Port cause error recovery services to run on all subordinate devices regardless of administrative state. The .errordetected callback,...

CVE-2026-53177

In the Linux kernel, the bnxt_en driver fixes a NULL pointer dereference in PCIe error handling. The vulnerability arises when PCIe errors detected by a Root Port or Downstream Port trigger error recovery on subordinate devices even if the NIC is administratively down. Specifically, the .error_de...

CVE-2026-53163

The CVE concerns the Linux kernel rtmutex path: specifically, a vulnerability in remove_waiter() that could dereference a waiter not enqueued, triggered via FUTEX_CMP_REQUEUE_PI. The issue is tied to task_blocks_on_rt_mutex() not arming the waiter on deadlock detection, leaving waiter->task NU...

EUVD-2025-210334

A NULL pointer dereference in the gffilterinparentchain function /filtercore/filterpid.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted file...

CVE-2025-60473

A NULL pointer dereference in the gffilterinparentchain function /filtercore/filterpid.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted file...