Volerion logoVolerion
Volerion logoVolerion

Linux Kernel RSS Lookup NULL Pointer Dereference Vulnerability After Soft Reset

Vulnerability

A NULL pointer dereference vulnerability has been identified in the Linux kernel's Intel IDPF driver. This issue occurs after a soft reset when the RSS lookup table (LUT) is cleared but not restored unless the network interface is active. If an ethtool command is issued to access the RSS LUT immediately after the reset, it leads to a NULL pointer dereference. The vulnerability affects the Linux kernel stable tree.

Impact

Exploitation of this vulnerability causes a kernel NULL pointer dereference, leading to a crash of the affected system component.

Reproduction

To reproduce this vulnerability, bring the network interface down if it is up. Then, update the queue count using ethtool. Afterward, attempt to display the RSS LUT with ethtool. This sequence will trigger the NULL pointer dereference.

Remediation

No specific remediation is mentioned, but users can apply the available patch in the Linux kernel stable tree.

Added: Jan 23, 2026, 4:23 PM
Updated: Jan 23, 2026, 4:23 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
3.4
remediation
7.7
relevance
2.3
threat
4.8
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.