Description

In the Linux kernel, the following vulnerability has been resolved: net: marvell: prestera: fix NULL dereference on devlink_alloc() failure devlink_alloc() may return NULL on allocation failure, but prestera_devlink_alloc() unconditionally calls devlink_priv() on the returned pointer. This leads to a NULL pointer dereference if devlink allocation fails. Add a check for a NULL devlink pointer and return NULL early to avoid the crash.

INFO

Published Date :

2026-01-31T11:39:03.179Z

Last Modified :

2026-02-09T08:37:12.887Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-23019 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-23019.

URL Resource
https://git.kernel.org/stable/c/325aea74be7e192b5c947c782da23b0d19a5fda2 cve-icon cve-icon
https://git.kernel.org/stable/c/326a4b7e61d01db3507f71c8bb5e85362f607064 cve-icon cve-icon
https://git.kernel.org/stable/c/3950054c9512add0cc79ab7e72b6d2f9f675e25b cve-icon cve-icon
https://git.kernel.org/stable/c/8a4333b2818f0d853b43e139936c20659366e4a0 cve-icon cve-icon
https://git.kernel.org/stable/c/94e070cd50790317fba7787ae6006934b7edcb6f cve-icon cve-icon
https://git.kernel.org/stable/c/a428e0da1248c353557970848994f35fd3f005e2 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026013135-CVE-2026-23019-dce2@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-23019 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-23019 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact