Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Intel Ice Driver NULL Pointer Dereference Vulnerability

Vulnerability

A vulnerability in the Linux kernel's Intel Ice driver can lead to a NULL pointer dereference. This issue arises after the Ice driver is removed following a failed hardware initialization, which occurs because the driver does not properly release control of its resources. The problem was introduced by a previous commit that removed a necessary cleanup step, causing the driver to fail when reinitialized via the devlink interface. The vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability can be exploited to cause a NULL pointer dereference, leading to a crash of the affected system or application.

Reproduction

The vulnerability can be reproduced by reloading the devlink interface for a device using the Intel Ice driver. This process will fail to properly initialize the device's hardware, and subsequently removing the driver will trigger a NULL pointer dereference, causing a system crash.

Remediation

Users can apply the latest patch available in the Linux kernel stable tree to address this vulnerability.

Added: Feb 14, 2026, 3:24 PM
Updated: Feb 14, 2026, 3:24 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
3.4
remediation
7.7
relevance
2.9
threat
4.8
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.