26 matches found
SUSE CVE-2026-53289
In the Linux kernel, the following vulnerability has been resolved: ice: fix NULL pointer dereference in iceresetallvfs iceresetallvfs ignores the return value of icevfrebuildvsi. When the VSI rebuild fails e.g. during NVM firmware update via nvmupdate64e, icevsirebuild tears down the VSI on its...
UBUNTU-CVE-2026-53289
In the Linux kernel, the following vulnerability has been resolved: ice: fix NULL pointer dereference in iceresetallvfs iceresetallvfs ignores the return value of icevfrebuildvsi. When the VSI rebuild fails e.g. during NVM firmware update via nvmupdate64e, icevsirebuild tears down the VSI on its...
EUVD-2026-39894
In the Linux kernel, the following vulnerability has been resolved: ice: fix NULL pointer dereference in iceresetallvfs iceresetallvfs ignores the return value of icevfrebuildvsi. When the VSI rebuild fails e.g. during NVM firmware update via nvmupdate64e, icevsirebuild tears down the VSI on its...
CVE-2026-53289
Summary of CVE-2026-53289 (Linux kernel, ice driver). The vulnerability arises in ice_reset_all_vfs() where the return value of ice_vf_rebuild_vsi() is ignored. If VSI rebuild fails (for example during NVM firmware update via nvmupdate64e), ice_vsi_rebuild() tears down the VSI on its error path, ...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Ice: Avoid bpfprog refcount underflow The Ice driver includes routines for managing XDP resources that are shared between the ndobpf operation and the VSI rebuild flow. The latter occurs, for example, when the user changes the...
kernel: Linux kernel: Denial of Service in ice driver due to race condition during VSI rebuild
A flaw was found in the Linux kernel's ice network driver. A local attacker could exploit a race condition during the Virtual Station Interface VSI rebuild process. This flaw occurs when the Precision Time Protocol PTP periodic work attempts to access uninitialized memory, leading to a NULL point...
ALSA-2026:6570 Moderate: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel net/mlx5: Use-after-free in ECVF vports unload leads to denial of service CVE-2025-38109 kernel: Kernel: Privilege escalation or denial of service in nftables via inverted...
CVE-2026-23210
In the Linux kernel, the following vulnerability has been resolved: ice: Fix PTP NULL pointer dereference during VSI rebuild Fix race condition where PTP periodic work runs while VSI is being rebuilt, accessing NULL vsi-rxrings. The sequence was: 1. iceptpprepareforreset cancels PTP work 2...
EUVD-2026-5836
In the Linux kernel, the following vulnerability has been resolved: ice: Fix PTP NULL pointer dereference during VSI rebuild Fix race condition where PTP periodic work runs while VSI is being rebuilt, accessing NULL vsi-rxrings. The sequence was: 1. iceptpprepareforreset cancels PTP work 2...
CVE-2026-23210
In CVE-2026-23210, the Linux kernel ice driver experiences a NULL pointer dereference during VSI rebuild when PTP periodic work runs concurrently with VSI rebuild. The root cause is a race where ice_ptp_prepare_for_reset() cancels PTP work, ice_ptp_rebuild() queues it, and VSI rebuild occurs afte...
Linux Distros Unpatched Vulnerability : CVE-2026-23210
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ice: Fix PTP NULL pointer dereference during VSI rebuild Fix race condition where PTP periodic work runs while VSI is being rebuilt, accessing NULL vsi-rxrings...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989480)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989480 advisory. In the Linux kernel, the following vulnerability has been resolved: ice: avoid bpfprog refcount underflow Ice driver has the routines for managing XDP resources that...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986812)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986812 advisory. In the Linux kernel, the following vulnerability has been resolved: ice: avoid bpfprog refcount underflow Ice driver has the routines for managing XDP resources that...
The vulnerability of the ice component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the ice component in the Linux operating system’s kernel is related to the assignment of the NULL pointer in the icevsirebuild function. Exploiting this vulnerability can allow an attacker to cause a service failure...
SUSE CVE-2024-50042
In the Linux kernel, the following vulnerability has been resolved: ice: Fix increasing MSI-X on VF Increasing MSI-X value on a VF leads to invalid memory operations. This is caused by not reallocating some arrays. Reproducer: modprobe ice echo 0 /sys/bus/pci/devices/$PFPCI/sriovdriversautoprobe...
DEBIAN-CVE-2024-50042
In the Linux kernel, the following vulnerability has been resolved: ice: Fix increasing MSI-X on VF Increasing MSI-X value on a VF leads to invalid memory operations. This is caused by not reallocating some arrays. Reproducer: modprobe ice echo 0 /sys/bus/pci/devices/$PFPCI/sriovdriversautoprobe...
CVE-2024-46765
In the Linux kernel, the following vulnerability has been resolved: ice: protect XDP configuration with a mutex The main threat to data consistency in icexdp is a possible asynchronous PF reset. It can be triggered by a user or by TX timeout handler. XDP setup and PF reset code access the same...
PT-2024-32180
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.52 Description The main threat to data consistency in ice xdp is a possible asynchronous PF reset, which can be triggered by a user or by TX timeout handler. XDP setup and PF reset code access the same...
SUSE CVE-2021-47563
In the Linux kernel, the following vulnerability has been resolved: ice: avoid bpfprog refcount underflow Ice driver has the routines for managing XDP resources that are shared between ndobpf op and VSI rebuild flow. The latter takes place for example when user changes queue count on an interface...
CVE-2021-47563
A vulnerability was found in the Linux kernel's ice driver, where the addpbleprm function improperly manages the reference counting of the bpfprog object. This issue occurs during the VSI rebuild process, causing a reference count underflow when an old program is mistakenly decremented while stil...