CVE-2025-38186 | Linux Kernel up to 6.12.34/6.15.3/6.16-rc2 RoCE Driver bnxt_ulp_stop/bnxt_ulp_start null pointer dereference

A vulnerability was found in Linux Kernel up to 6.12.34/6.15.3/6.16-rc2. It has been declared as critical. This vulnerability affects the function bnxt_ulp_stop/bnxt_ulp_start of the component RoCE Driver. The manipulation leads to null pointer dereference.

This vulnerability was named CVE-2025-38186. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More