CVE-2025-21998

Summary

In the Linux kernel, the following vulnerability has been resolved:

firmware: qcom: uefisecapp: fix efivars registration race

Since the conversion to using the TZ allocator, the efivars service is registered before the memory pool has been allocated, something which can lead to a NULL-pointer dereference in case of a racing EFI variable access.

Make sure that all resources have been set up before registering the efivars.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux6612103ec35af6058bb85ab24dae28e119b3c055 < c4e37b381a7a243c298a4858fc0a5a74e737c79aaffected
LinuxLinux6612103ec35af6058bb85ab24dae28e119b3c055 < f15a2b96a0e41c426c63a932d0e63cde7b9784aaaffected
LinuxLinux6612103ec35af6058bb85ab24dae28e119b3c055 < da8d493a80993972c427002684d0742560f3be4aaffected
LinuxLinux6.11affected
LinuxLinux0 < 6.11unaffected
LinuxLinux6.12.21 <= 6.12.*unaffected
LinuxLinux6.13.9 <= 6.13.*unaffected
LinuxLinux6.14 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References