CVE-2026-46188
EUVD-2026-3281528.05.2026, 10:16
In the Linux kernel, the following vulnerability has been resolved: octeon_ep_vf: add NULL check for napi_build_skb() napi_build_skb() can return NULL on allocation failure. In __octep_vf_oq_process_rx(), the result is used directly without a NULL check in both the single-buffer and multi-fragment paths, leading to a NULL pointer dereference. Add NULL checks after both napi_build_skb() calls, properly advancing descriptors and consuming remaining fragments on failure.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| linux | linux_kernel | 6.9 ≤ 𝑥 < 6.12.88 |
| linux | linux_kernel | 6.13 ≤ 𝑥 < 6.18.30 |
| linux | linux_kernel | 6.19 ≤ 𝑥 < 7.0.7 |
𝑥
= Vulnerable software versions
Debian Releases
Common Weakness Enumeration
Vulnerability Media Exposure