Description
In the Linux kernel, the following vulnerability has been resolved: be2net: pass wrb_params in case of OS2BMC be_insert_vlan_in_pkt() is called with the wrb_params argument being NULL at be_send_pkt_to_bmc() call site. This may lead to dereferencing a NULL pointer when processing a workaround for specific packet, as commit bc0c3405abbb ("be2net: fix a Tx stall bug caused by a specific ipv6 packet") states. The correct way would be to pass the wrb_params from be_xmit().
Product status
760c295e0e8d982917d004c9095cff61c0cbd803 (git) before 48d59b60dd5d7e4c48c077a2008c9dcd7b59bdfe
760c295e0e8d982917d004c9095cff61c0cbd803 (git) before ce0a3699244aca3acb659f143c9cb1327b210f89
760c295e0e8d982917d004c9095cff61c0cbd803 (git) before 1ecd86ec6efddb59a10c927e8e679f183bb9113e
760c295e0e8d982917d004c9095cff61c0cbd803 (git) before 4c4741f6e7f2fa4e1486cb61e1c15b9236ec134d
760c295e0e8d982917d004c9095cff61c0cbd803 (git) before 7d277a7a58578dd62fd546ddaef459ec24ccae36
4.2
Any version before 4.2
5.4.302 (semver)
6.6.118 (semver)
6.12.60 (semver)
6.17.10 (semver)
6.18 (original_commit_for_fix)
References
git.kernel.org/...c/48d59b60dd5d7e4c48c077a2008c9dcd7b59bdfe
git.kernel.org/...c/ce0a3699244aca3acb659f143c9cb1327b210f89
git.kernel.org/...c/1ecd86ec6efddb59a10c927e8e679f183bb9113e
git.kernel.org/...c/4c4741f6e7f2fa4e1486cb61e1c15b9236ec134d
git.kernel.org/...c/7d277a7a58578dd62fd546ddaef459ec24ccae36
