NULL Pointer Dereference in Hyper-V Virtual Machines Affecting Linux Kernel ixgbevf Driver
CVE-2026-43094

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 6 May 2026

What is CVE-2026-43094?

A vulnerability has been identified in the ixgbevf driver of the Linux kernel affecting Hyper-V virtual machines. A missing callback for negotiating features led to a situation where dereferencing a NULL function pointer occurs, resulting in a critical NULL pointer dereference during the probe process. This issue may cause the affected virtual machine to crash, potentially leading to service disruption. The problem arises from the ixgbevf_hv_mac_ops not including the necessary negotiate_features callback, which was overlooked in prior commits. A resolution has been implemented to gracefully handle this scenario, ensuring better stability and security for Hyper-V deployments.

Affected Version(s)

Linux 2e0aab9ddaf1428602c78f12064cd1e6ffcc4d18

Linux bf580112ed61736c2645a893413a04732505d4b1 < 2270ebab53128fb73c4a70a292be09094074737f

Linux a7075f501bd33c93570af759b6f4302ef0175168 < 4db7b61ec1d1b2b67c0881b62fc4f9583bc21484

References

https://git.kernel.org/stable/c/d8a747057a17ffc79e31df1ab...

https://git.kernel.org/stable/c/2270ebab53128fb73c4a70a29...

https://git.kernel.org/stable/c/4db7b61ec1d1b2b67c0881b62...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43094 Data

JSON