CVE-2026-43173

A flaw was found in the Linux kernel. A local user can trigger a NULL pointer dereference in the ixp4xxgettsinfo function within the network ethernet xscale driver. This occurs because ixp46xptpfind is unconditionally called, even on systems that do not support the ixp46x PTP feature. Successful...

CVE-2026-43164

A flaw was found in the Linux kernel's UDP-Lite User Datagram Protocol-Lite implementation. An issue during the initialization of UDP-Lite sockets can lead to a null-pointer dereference in the udpenqueuescheduleskb function. This vulnerability could allow an attacker to trigger a system crash,...

CVE-2026-43159

A flaw was found in the rtl8723bs Wi-Fi driver within the Linux kernel. This vulnerability occurs when a pointer, pwlan, can become null before being used in the rtwfreenetworknolock function, leading to a null pointer dereference. An attacker could potentially exploit this to cause a system cras...

CVE-2026-43160

A flaw was found in the Linux kernel's macsmc driver. This vulnerability occurs because a mutex, a mechanism used to prevent simultaneous access to shared resources, within the struct applesmc is not properly initialized in the applesmcprobe function. An uninitialized mutex can lead to occasional...

CVE-2026-43152

A flaw was found in the Linux kernel's Human Interface Device HID subsystem, specifically within the hid-pl module. This vulnerability arises from improper error handling during device initialization. An attacker could potentially trigger a NULL pointer dereference by interacting with a device th...

CVE-2026-43148

A flaw was found in the Linux kernel. This vulnerability occurs in the powerpc/smp component due to a missing check for memory allocation failure. Specifically, if the kcalloc function fails to allocate memory within parsethreadgroups, a subsequent operation can attempt to use a NULL pointer. Thi...

CVE-2026-43137

A flaw was found in the Linux kernel's Advanced Linux Sound Architecture on Chip ASoC Sound Open Firmware SOF Intel High Definition Audio HDA subsystem. This flaw occurs when there is a mismatch between the Digital Audio Interface DAI links in the machine driver and the audio topology, leading to...

CVE-2026-43131

A flaw was found in the Linux kernel. When the System Management Unit SMU is disabled during Reliability, Availability, and Serviceability RAS initialization, a null pointer dereference occurs within the drm/amd/pm module. This issue can lead to a system crash, resulting in a Denial of Service Do...

CVE-2026-43123

A flaw was found in the fbcon component of the Linux kernel. A local user could exploit a missing return value check in the con2fbacquirenewinfo function. This oversight can lead to a null pointer dereference, potentially causing a system crash and resulting in a Denial of Service DoS...

CVE-2026-43122

A flaw was found in the Linux kernel's Advanced Configuration and Power Interface ACPI cpuidle driver. Due to an update in the acpiprocessorstart function, a NULL pointer dereference can occur if acpiprocessorpowerinit is called without a cpuidle driver. This vulnerability could allow a local...

CVE-2026-43094

A flaw was found in the Linux kernel's ixgbevf driver. When running on Hyper-V virtual machines, a missing operation in the driver's Hyper-V operations table can lead to a null pointer dereference during feature negotiation. This vulnerability allows a local user to trigger a system crash,...

CVE-2026-43099

A flaw was found in the Linux kernel, specifically within the IPv4 Internet Protocol version 4 and ICMP Internet Control Message Protocol components. When the IPv6 Internet Protocol version 6 stack is not active, a specific function ipv6devfind can return an error. If this error is then passed to...

CVE-2025-71293

A flaw was found in the Linux kernel's AMD GPU amdgpu driver. This vulnerability occurs when the EEPROM Electrically Erasable Programmable Read-Only Memory contains only invalid address entries, causing a critical data allocation to be skipped. This leads to a NULL pointer dereference, which can...

CVE-2025-71294

A flaw was found in the Linux kernel's drm/amdgpu component. When the SDMA System Direct Memory Access block is not enabled, the bufferfuncs are not properly initialized. This can lead to a NULL pointer dereference, potentially causing a system crash and a denial of service...

CVE-2025-71291

A flaw was found in the Linux kernel's bcmvk module. A null-pointer dereference can occur within the bcmvkread function if a specific condition is met where a pointer entry is NULL and an error code -EMSGSIZE is returned. This vulnerability could allow a local attacker to cause system instability...

CVE-2025-71295

A flaw was found in the Linux kernel. This vulnerability occurs when the trytofreebuffers function is called on memory pages folios that do not have associated data buffers, specifically when certain conditions related to memory release operations are met. This can lead to a null pointer...

CVE-2025-71285

A flaw was found in the Linux kernel's qrtr driver. A race condition in the Modem Host Interface MHI autoqueue feature for Inter-Processor Communication Router IPCR downlink channels can lead to a NULL pointer dereference. This occurs because a callback function may be invoked before the qrtr...

CVE-2026-43213

A flaw was found in the Linux kernel's rtw89pci component. This vulnerability allows an attacker to cause a kernel NULL pointer dereference by sending a specially crafted TX release report with an abnormal sequence number. This can lead to an out-of-bounds memory access, resulting in a system cra...

BIT-JAVA-MIN-2025-27113

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c...

BIT-JAVA-2025-27113

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c...