CVE-2025-37787
Published: May 1, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: avoid unregistering devlink regions which were never registered Russell King reports that a system with mv88e6xxx dereferences a NULL pointer when unbinding this driver: https://lore.kernel.org/netdev/[email protected]/ The crash seems to be in devlink_region_destroy(), which is not NULL tolerant but is given a NULL devlink global region pointer. At least on some chips, some devlink regions are conditionally registered since the blamed commit, see mv88e6xxx_setup_devlink_regions_global(): if (cond && !cond(chip)) continue; These are MV88E6XXX_REGION_STU and MV88E6XXX_REGION_PVT. If the chip does not have an STU or PVT, it should crash like this. To fix the issue, avoid unregistering those regions which are NULL, i.e. were skipped at mv88e6xxx_setup_devlink_regions_global() time.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 836021a2d0e0e4c90b895a35bd9c0342071855fb - < 8ccdf5e24b276848eefb2755e05ff0f005a0c4a1affected 836021a2d0e0e4c90b895a35bd9c0342071855fb - < b3c70dfe51f10df60db2646c08cebd24bcdc5247affected 836021a2d0e0e4c90b895a35bd9c0342071855fb - < bbb80f004f7a90c3dcaacc982c59967457254a05affected 836021a2d0e0e4c90b895a35bd9c0342071855fb - < 3665695e3572239dc233216f06b41f40cc771889affected 836021a2d0e0e4c90b895a35bd9c0342071855fb - < 5f5e95945bb1e08be7655da6acba648274db457d+1 more versions |
Linux | Linux | affected 5.13unaffected 0 - < 5.13unaffected 5.15.181 - <= 5.15.*unaffected 6.1.135 - <= 6.1.*unaffected 6.6.88 - <= 6.6.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now