Primary

Context

Linux Kernel OcteonTX2-PF NULL Pointer Dereference Vulnerability in MACsec Interface

Vulnerability

Patched

A vulnerability in the Linux kernel's OcteonTX2 network driver can lead to NULL pointer dereferences, causing system crashes. This issue occurs when the system is rebooted after a MACsec interface has been created. The vulnerability affects the OcteonTX2-PF component of the Linux kernel.

Impact

Exploitation of this vulnerability leads to a kernel crash due to a NULL pointer dereference.

Reproduction

To reproduce this vulnerability, create a MACsec interface on a system running the affected OcteonTX2-PF driver. After the interface is established, reboot the system. The reboot process will trigger a NULL pointer dereference, causing a kernel crash.

Remediation

The vulnerability has been addressed in the Linux kernel. Users should upgrade to the latest version where this issue has been fixed.

Added: Oct 4, 2025, 4:46 PM

Updated: Oct 4, 2025, 4:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.7

remediation

7.7

relevance

0.7

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.7

remediation

7.7

relevance

0.7

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel OcteonTX2-PF NULL Pointer Dereference Vulnerability in MACsec Interface

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating