CVE-2026-23117

CWE-476NULL Pointer Dereference7 documents7 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 96.13%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Linux LinuxLinux Linux Kernel
Timeline
PublishedFeb 14

Description

In the Linux kernel, the following vulnerability has been resolved: ice: add missing ice_deinit_hw() in devlink reinit path devlink-reload results in ice_init_hw failed error, and then removing the ice driver causes a NULL pointer dereference. [ +0.102213] ice 0000:ca:00.0: ice_init_hw failed: -16 ... [ +0.000001] Call Trace: [ +0.000003] [ +0.000006] ice_unload+0x8f/0x100 [ice] [ +0.000081] ice_remove+0xba/0x300 [ice] Commit 1390b8b3d2be ("ice: remove duplicate call to ice_deinit_hw() on er

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

NVDlinux/linux_kernel6.18.26.18.8+1
CVEListV5linux/linuxc91eee346089e4d287d5a111719e57cac605275ea3d99e2fbf01446d31a0d0dfc46444e915a1f6d4+2
Debianlinux< 6.18.8-1

Patches

Patch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

3
OSV
CVE-2026-23117: In the Linux kernel, the following vulnerability has been resolved: ice: add missing ice_deinit_hw() in devlink reinit path devlink-reload results in2026-02-14
CVEList
ice: add missing ice_deinit_hw() in devlink reinit path2026-02-14
GHSA
GHSA-6pp9-r78q-5hwx: In the Linux kernel, the following vulnerability has been resolved: ice: add missing ice_deinit_hw() in devlink reinit path devlink-reload results i2026-02-14

📋Vendor Advisories

2
Red Hat
kernel: ice: add missing ice_deinit_hw() in devlink reinit path2026-02-14
Debian
CVE-2026-23117: linux - In the Linux kernel, the following vulnerability has been resolved: ice: add mi...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23117 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-23117 (MEDIUM CVSS 5.5) | In the Linux kernel | cvebase.io