← volver
CVE-2025-39897

net: xilinx: axienet: Add error handling for RX metadata pointer retrieval

CVSS 5.5 MEDIUMEPSS 0.1%CWE-476
In the Linux kernel, the following vulnerability has been resolved: net: xilinx: axienet: Add error handling for RX metadata pointer retrieval Add proper error checking for dmaengine_desc_get_metadata_ptr() which can return an error pointer and lead to potential crashes or undefined behaviour if the pointer retrieval fails. Properly handle the error by unmapping DMA buffer, freeing the skb and returning early to prevent further processing with invalid data.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Productos afectados
Linux · Linux

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://git.kernel.org/stable/c/8bbceba7dc5090c00105e006ce28d1292cfda8ddhttps://git.kernel.org/stable/c/92e2fc92bc4eb2bc0e84404316fbc02ddd0a3196https://git.kernel.org/stable/c/d0ecda6fdd840b406df6617b003b036f65dd8926