CVE-2025-22006

Summary

In the Linux kernel, the following vulnerability has been resolved:

net: ethernet: ti: am65-cpsw: Fix NAPI registration sequence

Registering the interrupts for TX or RX DMA Channels prior to registering their respective NAPI callbacks can result in a NULL pointer dereference. This is seen in practice as a random occurrence since it depends on the randomness associated with the generation of traffic by Linux and the reception of traffic from the wire.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux82b44cdb0355b5061769ae51909d1c8a1b7f31f2 < d4bf956547c38c04fad8d72a961ac4dc00bad000affected
LinuxLinuxfaef4c2bebac3c6e4161e66c3d42b85e88013709 < 942557abed7f38b77a47d77b92d448802eefe185affected
LinuxLinux681eb2beb3efe21e630bcc4881595e3b42dd7948 < 5f079290e5913a0060e059500b7d440990ac1066affected
LinuxLinux6.12.14 < 6.12.21affected
LinuxLinux6.13.3 < 6.13.9affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References