CVE-2025-22050
- Source
- https://cve.org/CVERecord?id=CVE-2025-22050
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-22050.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-22050
- Downstream
- Related
- Published
- 2025-04-16T14:12:08.954Z
- Modified
- 2026-03-20T12:41:18.033322Z
- Summary
- usbnet:fix NPE during rx_complete
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
usbnet:fix NPE during rx_complete
Missing usbnetgoingaway Check in Critical Path. The usbsubmiturb function lacks a usbnetgoingaway validation, whereas __usbnetqueueskb includes this check.
This inconsistency creates a race condition where: A URB request may succeed, but the corresponding SKB data fails to be queued.
Subsequent processes: (e.g., rxcomplete → deferbh → _skbunlink(skb, list)) attempt to access skb->next, triggering a NULL pointer dereference (Kernel Panic).
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/22xxx/CVE-2025-22050.json" }- References
-
- https://git.kernel.org/stable/c/0c30988588b28393e3e8873d5654f910e86391ba
- https://git.kernel.org/stable/c/0f10f83acfd619e13c64d6705908dfd792f19544
- https://git.kernel.org/stable/c/51de3600093429e3b712e5f091d767babc5dd6df
- https://git.kernel.org/stable/c/95789c2f94fd29dce8759f9766baa333f749287c
- https://git.kernel.org/stable/c/acacd48a37b52fc95f621765762c04152b58d642
- https://git.kernel.org/stable/c/d689645cd1594ea1d13cb0c404f8ad1011353e0e
- https://git.kernel.org/stable/c/fd9ee3f0d6a53844f65efde581c91bbb0ff749ac
- https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/22xxx/CVE-2025-22050.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-22050
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedb80aacfea6e8d6ed6e430aa13922d6ccf044415aFixed95789c2f94fd29dce8759f9766baa333f749287c
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced869caa8de8cb94514df704ccbe0b024fda4b9398Fixed0f10f83acfd619e13c64d6705908dfd792f19544
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1e44ee6cdd123d6cfe78b4a94e1572e23bbb58ceFixedacacd48a37b52fc95f621765762c04152b58d642
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced04e906839a053f092ef53f4fb2d610983412b904Fixedd689645cd1594ea1d13cb0c404f8ad1011353e0eFixed0c30988588b28393e3e8873d5654f910e86391baFixedfd9ee3f0d6a53844f65efde581c91bbb0ff749acFixed51de3600093429e3b712e5f091d767babc5dd6df
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedca124236cd14e61610f56df9a8f81376a1ffe660Last affected54671d731f4977fb3c0c26f2840655b5204e4437