CVE-2021-46916

MEDIUM

Linux kernel 5.11-5.11.15 - NULL Pointer Dereference in ixgbe Ethtool Loopback Test

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: ixgbe: Fix NULL pointer dereference in ethtool loopback test The ixgbe driver currently generates a NULL pointer dereference when performing the ethtool loopback test. This is due to the fact that there isn't a q_vector associated with the test ring when it is setup as interrupts are not normally added to the test rings. To address this I have added code that will check for a q_vector before returning a napi_id value. If a q_vector is not present it will return a value of 0.

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/758d19098df4b0bbca9f40d6ae6c82c9c18b9bba

Patch

https://git.kernel.org/stable/c/31166efb1cee348eb6314e9c0095d84cbeb66b9d

Scores

CVSS v3 5.5

EPSS 0.0019

EPSS Percentile 9.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (7)

Linux/Linux < 5.11

Linux/Linux 5.11

Linux/Linux 5.11.16 - 5.11.*

Linux/Linux 5.12

Linux/Linux b02e5a0ebb172c8276cea3151942aac681f7a4a6 - 31166efb1cee348eb6314e9c0095d84cbeb66b9d

Linux/Linux b02e5a0ebb172c8276cea3151942aac681f7a4a6 - 758d19098df4b0bbca9f40d6ae6c82c9c18b9bba

linux/linux_kernel 5.11.0 - 5.11.16

Published Feb 27, 2024

Tracked Since Feb 18, 2026