CVE-2025-21903
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
mctp i3c: handle NULL header address
daddr can be NULL if there is no neighbour table entry present, in that case the tx packet should be dropped.
saddr will usually be set by MCTP core, but check for NULL in case a packet is transmitted by a different protocol.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | c8755b29b58ec65be17bcb8c40763d2dcb1f1db5 < d8be54c35aee29d96d1350b1b6f153be4da37c07 | affected |
| Linux | Linux | c8755b29b58ec65be17bcb8c40763d2dcb1f1db5 < 740bf9c9b715cc327d34b1e2d4ee79fcd4c47a56 | affected |
| Linux | Linux | c8755b29b58ec65be17bcb8c40763d2dcb1f1db5 < cf7ee25e70c6edfac4553d6b671e8b19db1d9573 | affected |
| Linux | Linux | 6.7 | affected |
| Linux | Linux | 0 < 6.7 | unaffected |
| Linux | Linux | 6.12.19 <= 6.12.* | unaffected |
| Linux | Linux | 6.13.7 <= 6.13.* | unaffected |
| Linux | Linux | 6.14 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/d8be54c35aee29d96d1350b1b6f153be4da37c07
- https://git.kernel.org/stable/c/740bf9c9b715cc327d34b1e2d4ee79fcd4c47a56
- https://git.kernel.org/stable/c/cf7ee25e70c6edfac4553d6b671e8b19db1d9573
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.