CVE-2026-53230

CVE-2026-53230 describes a slab-out-of-bounds vulnerability in the Linux kernel mlx5 driver: mlx5_query_nic_vport_mac_list sizes its firmware command buffer using the PF’s log_max_current_uc/mc_list, risking an overflow when querying a VF vport with a larger max. The resulting memory access is a ...

CVE-2026-53230 net/mlx5: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix slab-out-of-bounds in mlx5querynicvportmaclist mlx5querynicvportmaclist sizes its firmware command buffer using the PF's logmaxcurrentuc/mclist capabilities. When querying a VF vport with a larger configured max via...

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.10, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: i40e: Fixed potential invalid access when the MAC list is empty. listfirstentry never returns NULL—if the list is empty, it still returns a pointer to an invalid object, leading to potential invalid memory access when dereferenci...

PT-2026-6154

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the be2net driver within the Linux kernel where a NULL pointer dereference can occur in the be cmd get mac from list function. This happens when the pmac id valid...

SUSE CVE-2025-39853

In the Linux kernel, the following vulnerability has been resolved: i40e: Fix potential invalid access when MAC list is empty listfirstentry never returns NULL - if the list is empty, it still returns a pointer to an invalid object, leading to potential invalid memory access when dereferenced. Fi...

CVE-2025-39853

In the Linux kernel, the following vulnerability has been resolved: i40e: Fix potential invalid access when MAC list is empty listfirstentry never returns NULL - if the list is empty, it still returns a pointer to an invalid object, leading to potential invalid memory access when dereferenced. Fi...

CVE-2025-39853 i40e: Fix potential invalid access when MAC list is empty

In the Linux kernel, the following vulnerability has been resolved: i40e: Fix potential invalid access when MAC list is empty listfirstentry never returns NULL - if the list is empty, it still returns a pointer to an invalid object, leading to potential invalid memory access when dereferenced. Fi...

PT-2025-33768

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.16.0+ Description: The benet driver in the Linux kernel experiences a crash when creating Single Root I/O Virtualization SRIOV Virtual Functions VFs. This occurs because be cmd set mac list calls dma free...

CVE-2022-37093

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function AddMacList...

CVE-2022-36507

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function AddWlanMacList...