CVE-2026-43094

EPSS 0.02%
Veröffentlicht 06.05.2026 07:40:25
Zuletzt bearbeitet 06.05.2026 13:08:07
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

ixgbevf: add missing negotiate_features op to Hyper-V ops table

In the Linux kernel, the following vulnerability has been resolved:

ixgbevf: add missing negotiate_features op to Hyper-V ops table

Commit a7075f501bd3 ("ixgbevf: fix mailbox API compatibility by
negotiating supported features") added the .negotiate_features callback
to ixgbe_mac_operations and populated it in ixgbevf_mac_ops, but forgot
to add it to ixgbevf_hv_mac_ops. This leaves the function pointer NULL
on Hyper-V VMs.

During probe, ixgbevf_negotiate_api() calls ixgbevf_set_features(),
which unconditionally dereferences hw->mac.ops.negotiate_features().
On Hyper-V this results in a NULL pointer dereference:

  BUG: kernel NULL pointer dereference, address: 0000000000000000
  [...]
  Hardware name: Microsoft Corporation Virtual Machine/Virtual Machine [...]
  Workqueue: events work_for_cpu_fn
  RIP: 0010:0x0
  [...]
  Call Trace:
   ixgbevf_negotiate_api+0x66/0x160 [ixgbevf]
   ixgbevf_sw_init+0xe4/0x1f0 [ixgbevf]
   ixgbevf_probe+0x20f/0x4a0 [ixgbevf]
   local_pci_probe+0x50/0xa0
   work_for_cpu_fn+0x1a/0x30
   [...]

Add ixgbevf_hv_negotiate_features_vf() that returns -EOPNOTSUPP and
wire it into ixgbevf_hv_mac_ops. The caller already handles -EOPNOTSUPP
gracefully.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 8

CNA 2 VulnDex Vulnerability Enrichment 7

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 2e0aab9ddaf1428602c78f12064cd1e6ffcc4d18

Version < d8a747057a17ffc79e31df1abb11d05e1669d8e5

Status affected

Version bf580112ed61736c2645a893413a04732505d4b1

Version < 2270ebab53128fb73c4a70a292be09094074737f

Status affected

Version a7075f501bd33c93570af759b6f4302ef0175168

Version < 4db7b61ec1d1b2b67c0881b62fc4f9583bc21484

Status affected

Version a7075f501bd33c93570af759b6f4302ef0175168

Version < 1455ff8809843e6e83f1f5b5c0bcc2224c99a3cb

Status affected

Version a7075f501bd33c93570af759b6f4302ef0175168

Version < 4821d563cd7f251ae728be1a6d04af82a294a5b9

Status affected

Version 871ac1cd4ce4804defcb428cbb003fd84c415ff4

Status affected

Version a376e29b1b196dc90b50df7e5e3947e3026300c4

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.18

Status affected

Version 0

Version < 6.18

Status unaffected

Version <= 6.6.*

Version 6.6.136

Status unaffected

Version <= 6.12.*

Version 6.12.83

Status unaffected

Version <= 6.18.*

Version 6.18.24

Status unaffected

Version <= 6.19.*

Version 6.19.14

Status unaffected

Version <= *

Version 7.0

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.068

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/d8a747057a17ffc79e31df1abb11d05e1669d8e5

https://git.kernel.org/stable/c/2270ebab53128fb73c4a70a292be09094074737f

https://git.kernel.org/stable/c/4db7b61ec1d1b2b67c0881b62fc4f9583bc21484

https://git.kernel.org/stable/c/1455ff8809843e6e83f1f5b5c0bcc2224c99a3cb

https://git.kernel.org/stable/c/4821d563cd7f251ae728be1a6d04af82a294a5b9

https://nvd.nist.gov/vuln/detail/CVE-2026-43094

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-43094

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-43094

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-43094