Primary

Context

Linux Kernel be2net NULL Pointer Dereference Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's be2net driver can lead to a NULL pointer dereference. This issue occurs when the function be_insert_vlan_in_pkt() is called with a NULL wrb_params argument, potentially causing a crash while processing a workaround for certain IPv6 packets. The vulnerability affects the stable version of the Linux kernel.

Impact

Exploitation of this vulnerability causes a NULL pointer dereference, leading to a crash of the affected system.

Reproduction

The vulnerability can be reproduced by enabling the OS2BMC feature on a system with the affected Linux kernel version. When a specific IPv6 packet is processed, the be_send_pkt_to_bmc() function will be called with a NULL wrb_params argument. This will cause the be_insert_vlan_in_pkt() function to dereference the NULL pointer, leading to a system crash.

Remediation

Users can upgrade to the latest version of the Linux kernel stable tree, where this vulnerability has been addressed.

Added: Dec 4, 2025, 4:27 PM

Updated: Dec 4, 2025, 5:27 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.7

remediation

7.7

relevance

1.3

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.7

remediation

7.7

relevance

1.3

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel be2net NULL Pointer Dereference Vulnerability

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating