CVE-2025-21975

MEDIUM EPSS 6.4%
Published Apr 1, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Apr 1, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: handle errors in mlx5_chains_create_table() In mlx5_chains_create_table(), the return value of mlx5_get_fdb_sub_ns() and mlx5_get_flow_namespace() must be checked to prevent NULL pointer dereferences. If either function fails, the function should log error message with mlx5_core_warn() and return error pointer.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
6.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 12

VendorProductVersionRange
linuxlinux_kernel*≥5.6  –  <5.10.236
linuxlinux_kernel*≥5.11  –  <5.15.180
linuxlinux_kernel*≥5.16  –  <6.1.132
linuxlinux_kernel*≥6.2  –  <6.6.84
linuxlinux_kernel*≥6.7  –  <6.12.20
linuxlinux_kernel*≥6.13  –  <6.13.8
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any

References 9

  • git.kernel.org https://git.kernel.org/stable/c/093b4aaec97ec048623e3fe1e516fc45a954d412
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1598307c914ba3d2642a2b03d1ff11efbdb7c6c2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/15bdd93728369b2c8942a8e5d549d4b5dc04a2d9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1d34296409a519b4027750e3e82d9e19553a7398
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/29c419c64e9b396baeda1d8713d2aa3ba7c0acf6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/637105ef0d46fe5beac15aceb431da3ec832bb00
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/eab0396353be1c778eba1c0b5180176f04dd21ce
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/093b4aaec97ec048623e3fe1e516fc45a954d412
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1598307c914ba3d2642a2b03d1ff11efbdb7c6c2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/15bdd93728369b2c8942a8e5d549d4b5dc04a2d9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1d34296409a519b4027750e3e82d9e19553a7398
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/29c419c64e9b396baeda1d8713d2aa3ba7c0acf6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/637105ef0d46fe5beac15aceb431da3ec832bb00
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/eab0396353be1c778eba1c0b5180176f04dd21ce
    Patch