CVE-2025-21775

Published: Feb 27, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: can: ctucanfd: handle skb allocation failure If skb allocation fails, the pointer to struct can_frame is NULL. This is actually handled everywhere inside ctucan_err_interrupt() except for the only place. Add the missed NULL check. Found by Linux Verification Center (linuxtesting.org) with SVACE static analysis tool.

Vendor	Product	Versions
Linux	Linux	affected `2dcb8e8782d8e4c38903bf37b1a24d3ffd193da7 - < 84b9ac59978a6a4e0812d1c938fad97306272cef` affected `2dcb8e8782d8e4c38903bf37b1a24d3ffd193da7 - < e505b83b9ee6aa0ae2f4395f573a66579ae403fb` affected `2dcb8e8782d8e4c38903bf37b1a24d3ffd193da7 - < b0e592dd46a0a952b41c3bf6c963afdd6a42b526` affected `2dcb8e8782d8e4c38903bf37b1a24d3ffd193da7 - < e7e2e2318b1f085044126ba553a4e619842fc36d` affected `2dcb8e8782d8e4c38903bf37b1a24d3ffd193da7 - < 9bd24927e3eeb85642c7baa3b28be8bea6c2a078`
Linux	Linux	affected `5.19` unaffected `0 - < 5.19` unaffected `6.1.129 - <= 6.1.` unaffected `6.6.79 - <= 6.6.` unaffected `6.12.16 - <= 6.12.*` +2 more versions

References

https://git.kernel.org/stable/c/84b9ac59978a6a4e0812d1c938fad97306272cef

https://git.kernel.org/stable/c/e505b83b9ee6aa0ae2f4395f573a66579ae403fb

https://git.kernel.org/stable/c/b0e592dd46a0a952b41c3bf6c963afdd6a42b526

https://git.kernel.org/stable/c/e7e2e2318b1f085044126ba553a4e619842fc36d

https://git.kernel.org/stable/c/9bd24927e3eeb85642c7baa3b28be8bea6c2a078

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-21775

Description

Affected Products

References