Description
In the Linux kernel, the following vulnerability has been resolved: i40e: Fix potential invalid access when MAC list is empty list_first_entry() never returns NULL - if the list is empty, it still returns a pointer to an invalid object, leading to potential invalid memory access when dereferenced. Fix this by using list_first_entry_or_null instead of list_first_entry.
Product status
e3219ce6a775468368fb270fae3eb82a6787b436 (git) before 971feafe157afac443027acdc235badc6838560b
e3219ce6a775468368fb270fae3eb82a6787b436 (git) before 3c6fb929afa313d9d11f780451d113f73922fe5d
e3219ce6a775468368fb270fae3eb82a6787b436 (git) before 1eadabcf5623f1237a539b16586b4ed8ac8dffcd
e3219ce6a775468368fb270fae3eb82a6787b436 (git) before e2a5e74879f9b494bbd66fa93f355feacde450c7
e3219ce6a775468368fb270fae3eb82a6787b436 (git) before fb216d980fae6561c7c70af8ef826faf059c6515
e3219ce6a775468368fb270fae3eb82a6787b436 (git) before 66e7cdbda74ee823ec2bf7b830ebd235c54f5ddf
e3219ce6a775468368fb270fae3eb82a6787b436 (git) before 9c21fc4cebd44dd21016c61261a683af390343f8
e3219ce6a775468368fb270fae3eb82a6787b436 (git) before a556f06338e1d5a85af0e32ecb46e365547f92b9
4.6
Any version before 4.6
5.4.299 (semver)
5.10.243 (semver)
5.15.192 (semver)
6.1.151 (semver)
6.6.105 (semver)
6.12.46 (semver)
6.16.6 (semver)
6.17 (original_commit_for_fix)
References
lists.debian.org/debian-lts-announce/2025/10/msg00008.html
lists.debian.org/debian-lts-announce/2025/10/msg00007.html
git.kernel.org/...c/971feafe157afac443027acdc235badc6838560b
git.kernel.org/...c/3c6fb929afa313d9d11f780451d113f73922fe5d
git.kernel.org/...c/1eadabcf5623f1237a539b16586b4ed8ac8dffcd
git.kernel.org/...c/e2a5e74879f9b494bbd66fa93f355feacde450c7
git.kernel.org/...c/fb216d980fae6561c7c70af8ef826faf059c6515
git.kernel.org/...c/66e7cdbda74ee823ec2bf7b830ebd235c54f5ddf
git.kernel.org/...c/9c21fc4cebd44dd21016c61261a683af390343f8
git.kernel.org/...c/a556f06338e1d5a85af0e32ecb46e365547f92b9
