{"id":"CVE-2024-26855","summary":"net: ice: Fix potential NULL pointer dereference in ice_bridge_setlink()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ice: Fix potential NULL pointer dereference in ice_bridge_setlink()\n\nThe function ice_bridge_setlink() may encounter a NULL pointer dereference\nif nlmsg_find_attr() returns NULL and br_spec is dereferenced subsequently\nin nla_for_each_nested(). To address this issue, add a check to ensure that\nbr_spec is not NULL before proceeding with the nested attribute iteration.","modified":"2026-04-02T10:06:12.191461Z","published":"2024-04-17T10:17:17.858Z","related":["ALSA-2024:5928","ALSA-2024:7000","ALSA-2024:7001","SUSE-SU-2024:1643-1","SUSE-SU-2024:1644-1","SUSE-SU-2024:1646-1","SUSE-SU-2024:1659-1","SUSE-SU-2024:1663-1","SUSE-SU-2024:1870-1","SUSE-SU-2024:2135-1","SUSE-SU-2024:2203-1","SUSE-SU-2024:2973-1","SUSE-SU-2025:20008-1","SUSE-SU-2025:20028-1","SUSE-SU-2025:20166-1","SUSE-SU-2025:20249-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26855.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/06e456a05d669ca30b224b8ed962421770c1496c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/0e296067ae0d74a10b4933601f9aa9f0ec8f157f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/1a770927dc1d642b22417c3e668c871689fc58b3"},{"type":"WEB","url":"https://git.kernel.org/stable/c/37fe99016b12d32100ce670216816dba6c48b309"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8d95465d9a424200485792858c5b3be54658ce19"},{"type":"WEB","url":"https://git.kernel.org/stable/c/afdd29726a6de4ba27cd15590661424c888dc596"},{"type":"WEB","url":"https://git.kernel.org/stable/c/d9fefc51133107e59d192d773be86c1150cfeebb"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26855.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-26855"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2"},{"fixed":"d9fefc51133107e59d192d773be86c1150cfeebb"},{"fixed":"37fe99016b12d32100ce670216816dba6c48b309"},{"fixed":"8d95465d9a424200485792858c5b3be54658ce19"},{"fixed":"afdd29726a6de4ba27cd15590661424c888dc596"},{"fixed":"1a770927dc1d642b22417c3e668c871689fc58b3"},{"fixed":"0e296067ae0d74a10b4933601f9aa9f0ec8f157f"},{"fixed":"06e456a05d669ca30b224b8ed962421770c1496c"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26855.json"}}],"schema_version":"1.7.5"}