Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-21901

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Add sanity checks on rdev validity There is a possibility that ulp_irq_stop and ulp_irq_start callbacks will be called when the device is in detached state. This can cause a crash due to NULL pointer dereference as the rdev is already freed.

Published

2025-04-01T16:15:20.547

Last Modified

2025-10-01T20:18:32.043

Status

Modified

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

Severity

CVSSv3.1: 5.5 (MEDIUM)

Weaknesses

Type: Primary
CWE-476
Type: Secondary
CWE-476

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	linux	linux_kernel	< 6.12.18	Yes
Operating System	linux	linux_kernel	< 6.13.6	Yes
Operating System	linux	linux_kernel	6.14	Yes
Operating System	linux	linux_kernel	6.14	Yes
Operating System	linux	linux_kernel	6.14	Yes
Operating System	linux	linux_kernel	6.14	Yes

References

https://git.kernel.org/stable/c/8cb0eef46d70a99c88c26a1addb7fd955242e0e6 Patch (416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/aed1bc673907e3df372b317c10ff2f3582f8bf1a Patch (416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/f0df225d12fcb049429fb5bf5122afe143c2dd15 Patch (416baaa9-dc9f-4396-8d5f-8c081fb06d67)