CVE-2025-22050
Published: Apr 16, 2025
Modified: May 23, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: usbnet:fix NPE during rx_complete Missing usbnet_going_away Check in Critical Path. The usb_submit_urb function lacks a usbnet_going_away validation, whereas __usbnet_queue_skb includes this check. This inconsistency creates a race condition where: A URB request may succeed, but the corresponding SKB data fails to be queued. Subsequent processes: (e.g., rx_complete → defer_bh → __skb_unlink(skb, list)) attempt to access skb->next, triggering a NULL pointer dereference (Kernel Panic).
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected b80aacfea6e8d6ed6e430aa13922d6ccf044415a - < 95789c2f94fd29dce8759f9766baa333f749287caffected 869caa8de8cb94514df704ccbe0b024fda4b9398 - < 0f10f83acfd619e13c64d6705908dfd792f19544affected 1e44ee6cdd123d6cfe78b4a94e1572e23bbb58ce - < acacd48a37b52fc95f621765762c04152b58d642affected 04e906839a053f092ef53f4fb2d610983412b904 - < d689645cd1594ea1d13cb0c404f8ad1011353e0eaffected 04e906839a053f092ef53f4fb2d610983412b904 - < 0c30988588b28393e3e8873d5654f910e86391ba+9 more versions |
Linux | Linux | affected 6.12unaffected 0 - < 6.12unaffected 5.15.180 - <= 5.15.*unaffected 6.1.134 - <= 6.1.*unaffected 6.6.87 - <= 6.6.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now