CVE-2025-38122

July 3, 2025, 3:13 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: gve: add missing NULL check for gve_alloc_pending_packet() in TX DQO gve_alloc_pending_packet() can return NULL, but gve_tx_add_skb_dqo() did not check for this case before dereferencing the returned pointer. Add a missing NULL check to prevent a potential NULL pointer dereference when allocation fails. This improves robustness in low-memory scenarios.

Product(s) Impacted

Vendor Product Versions
Linux
  • Linux Kernel
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
o linux linux_kernel / / / / / / / /

References

https://git.kernel.org/stable/c/12c331b29c7397ac3b03584e12902990693bc248
https://git.kernel.org/stable/c/2e5ead9e4e91fbe7799bd38afd8904543be1cb51
https://git.kernel.org/stable/c/7f6265fce3bd424ded666481b37f106d7915fb6b
https://git.kernel.org/stable/c/a0319c9b1648a67511e947a596ca86888451c0a7
https://git.kernel.org/stable/c/ae98a1787fdcb0096d122bc80d93c3c7d812c04b
https://git.kernel.org/stable/c/c741a7ef68023ac800054e2131c3e22e647fd7e3

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2025-07-03
CVE-2025-38122

Timeline

Published: July 3, 2025, 9:15 a.m.
Last Modified: July 3, 2025, 3:13 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.