CVE-2025-21918

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-21918
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-21918.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-21918
Downstream
Related
Published
2025-04-01T15:40:53.561Z
Modified
2026-03-11T07:51:51.731344Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
usb: typec: ucsi: Fix NULL pointer access
Details

In the Linux kernel, the following vulnerability has been resolved:

usb: typec: ucsi: Fix NULL pointer access

Resources should be released only after all threads that utilize them have been destroyed. This commit ensures that resources are not released prematurely by waiting for the associated workqueue to complete before deallocating them.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/21xxx/CVE-2025-21918.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
b9aa02ca39a49740926c2c450a1505a4a0f8954a
Fixed
7a735a8a46f6ebf898bbefd96659ca5da798bce0
Fixed
46fba7be161bb89068958138ea64ec33c0b446d4
Fixed
079a3e52f3e751bb8f5937195bdf25c5d14fdff0
Fixed
592a0327d026a122e97e8e8bb7c60cbbe7697344
Fixed
b13abcb7ddd8d38de769486db5bd917537b32ab1

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-21918.json"