CVE-2025-21980

MEDIUM EPSS 6.1%
Published Apr 1, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Apr 1, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: sched: address a potential NULL pointer dereference in the GRED scheduler. If kzalloc in gred_init returns a NULL pointer, the code follows the error handling path, invoking gred_destroy. This, in turn, calls gred_offload, where memset could receive a NULL pointer as input, potentially leading to a kernel crash. When table->opt is NULL in gred_init(), gred_change_table_def() is not called yet, so it is not necessary to call ->ndo_setup_tc() in gred_offload().

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
6.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 10

VendorProductVersionRange
linuxlinux_kernel*≥5.16  –  <6.1.132
linuxlinux_kernel*≥6.2  –  <6.6.84
linuxlinux_kernel*≥6.7  –  <6.12.20
linuxlinux_kernel*≥6.13  –  <6.13.8
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any

References 6

  • git.kernel.org https://git.kernel.org/stable/c/0f0a152957d64ce45b4c27c687e7d087e8f45079
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/115ef44a98220fddfab37a39a19370497cd718b9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5f996b4f80c2cef1f9c77275055e7fcba44c9199
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/68896dd50180b38ea552e49a6a00b685321e5769
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d02c9acd68950a444acda18d514e2b41f846cb7f
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0f0a152957d64ce45b4c27c687e7d087e8f45079
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/115ef44a98220fddfab37a39a19370497cd718b9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5f996b4f80c2cef1f9c77275055e7fcba44c9199
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/68896dd50180b38ea552e49a6a00b685321e5769
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d02c9acd68950a444acda18d514e2b41f846cb7f
    Patch