CVE-2026-23020

net: 3com: 3c59x: fix possible null dereference in vortex_probe1()

Severity Score

5.5

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: net: 3com: 3c59x: fix possible null dereference in vortex_probe1() pdev can be null and free_ring: can be called in 1297 with a null
pdev.

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. For the oldstable distribution (bookworm), these problems have been fixed in version 6.1.162-1.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2026-01-13 CVE Reserved
2026-01-31 CVE Published
2026-02-09 CVE Updated
2026-03-04 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (9)

URL	Tag	Source
https://git.kernel.org/stable/c/55c82617c3e82210b7471e9334e8fc5df6a9961f	Vuln. Introduced
https://git.kernel.org/stable/c/d30fdc02c49ad9965bba25015ae66c22dae967d1	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/053ac9e37eee435e999277c0f1ef890dad6064bf	2026-01-19
https://git.kernel.org/stable/c/6cff14b831dbdb32675b4c7904dcc3eeeaf47e9d	2026-01-19
https://git.kernel.org/stable/c/606872c8e8bf96066730f6a2317502c5633c37f1	2026-01-17
https://git.kernel.org/stable/c/28b2a805609699be7b90020ae7dccfb234be1ceb	2026-01-17
https://git.kernel.org/stable/c/2f05f7737e16d9a40038cc1c38a96a3f7964898b	2026-01-17
https://git.kernel.org/stable/c/d82796a57cc0dac1dbef19d913c8f02a8cc7b1a7	2026-01-17
https://git.kernel.org/stable/c/a4e305ed60f7c41bbf9aabc16dd75267194e0de3	2026-01-08

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 5.10.248 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 5.10.248"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 5.15.198 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 5.15.198"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 6.1.161 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 6.1.161"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 6.6.121 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 6.6.121"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 6.12.66 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 6.12.66"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 6.18.6 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 6.18.6"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 6.19 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 6.19"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.16.12 Search vendor "Linux" for product "Linux Kernel" and version "4.16.12"		en		Affected