๐Ÿ” CVE Alert

CVE-2025-38184

UNKNOWN 0.0

tipc: fix null-ptr-deref when acquiring remote ip of ethernet bearer

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

In the Linux kernel, the following vulnerability has been resolved: tipc: fix null-ptr-deref when acquiring remote ip of ethernet bearer The reproduction steps: 1. create a tun interface 2. enable l2 bearer 3. TIPC_NL_UDP_GET_REMOTEIP with media name set to tun tipc: Started in network mode tipc: Node identity 8af312d38a21, cluster identity 4711 tipc: Enabled bearer <eth:syz_tun>, priority 1 Oops: general protection fault KASAN: null-ptr-deref in range CPU: 1 UID: 1000 PID: 559 Comm: poc Not tainted 6.16.0-rc1+ #117 PREEMPT Hardware name: QEMU Ubuntu 24.04 PC RIP: 0010:tipc_udp_nl_dump_remoteip+0x4a4/0x8f0 the ub was in fact a struct dev. when bid != 0 && skip_cnt != 0, bearer_list[bid] may be NULL or other media when other thread changes it. fix this by checking media_id.

Vendor linux
Product linux
Ecosystems
Industries
Technology
Published Jul 4, 2025
Last Updated May 11, 2026
Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Linux / Linux
832629ca5c313e122b22b8e73a6d80f111b1a1ae < 3998283e4c32c0fe69edd59b0876c193f50abce6 832629ca5c313e122b22b8e73a6d80f111b1a1ae < c2e17984752b9131061d1a2ca1199da2706337fd 832629ca5c313e122b22b8e73a6d80f111b1a1ae < 8595350615f952fcf8bc861464a6bf6b1129af50 832629ca5c313e122b22b8e73a6d80f111b1a1ae < 05d332ba075753d569d66333d62d60fff5f57ad8 832629ca5c313e122b22b8e73a6d80f111b1a1ae < d3dfe821dfe091c0045044343c8d86596d66e2cf 832629ca5c313e122b22b8e73a6d80f111b1a1ae < 0d3d91c3500f0c480e016faa4e2259c588616e59 832629ca5c313e122b22b8e73a6d80f111b1a1ae < 0f4a72fb266e48dbe928e1d936eab149e4ac3e1b 832629ca5c313e122b22b8e73a6d80f111b1a1ae < f82727adcf2992822e12198792af450a76ebd5ef
Linux / Linux
4.9

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
git.kernel.org: https://git.kernel.org/stable/c/3998283e4c32c0fe69edd59b0876c193f50abce6 git.kernel.org: https://git.kernel.org/stable/c/c2e17984752b9131061d1a2ca1199da2706337fd git.kernel.org: https://git.kernel.org/stable/c/8595350615f952fcf8bc861464a6bf6b1129af50 git.kernel.org: https://git.kernel.org/stable/c/05d332ba075753d569d66333d62d60fff5f57ad8 git.kernel.org: https://git.kernel.org/stable/c/d3dfe821dfe091c0045044343c8d86596d66e2cf git.kernel.org: https://git.kernel.org/stable/c/0d3d91c3500f0c480e016faa4e2259c588616e59 git.kernel.org: https://git.kernel.org/stable/c/0f4a72fb266e48dbe928e1d936eab149e4ac3e1b git.kernel.org: https://git.kernel.org/stable/c/f82727adcf2992822e12198792af450a76ebd5ef lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html