CVE-2025-21822

Summary

In the Linux kernel, the following vulnerability has been resolved:

ptp: vmclock: Set driver data before its usage

If vmclock_ptp_register() fails during probing, vmclock_remove() is called to clean up the ptp clock and misc device. It uses dev_get_drvdata() to access the vmclock state. However the driver data is not yet set at this point.

Assign the driver data earlier.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux20503272422693d793b84f88bf23fe4e955d3a33 < 6dbd8b91a065d1d8001446a28e72cd140f9acef0affected
LinuxLinux20503272422693d793b84f88bf23fe4e955d3a33 < f7d07cd4f77d77f366c8ffbb8ba8b61f614e5fceaffected
LinuxLinux6.13affected
LinuxLinux0 < 6.13unaffected
LinuxLinux6.13.4 <= 6.13.*unaffected
LinuxLinux6.14 <= *unaffected

Weaknesses

References