CVE-2025-38460

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-38460
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38460.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-38460
Downstream
Related
Published
2025-07-25T15:27:38.608Z
Modified
2026-03-12T02:16:04.961601Z
Summary
atm: clip: Fix potential null-ptr-deref in to_atmarpd().
Details

In the Linux kernel, the following vulnerability has been resolved:

atm: clip: Fix potential null-ptr-deref in to_atmarpd().

atmarpd is protected by RTNL since commit f3a0592b37b8 ("[ATM]: clip causes unregister hang").

However, it is not enough because toatmarpd() is called without RTNL, especially clipneighsolicit() / neighops->solicit() is unsleepable.

Also, there is no RTNL dependency around atmarpd.

Let's use a private mutex and RCU to protect access to atmarpd in to_atmarpd().

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38460.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Fixed
a4c5785feb979cd996a99cfaad8bf353b2e79301
Fixed
70eac9ba7ce25d99c1d99bbf4ddb058940f631f9
Fixed
3251ce3979f41bd228f77a7615f9dd616d06a110
Fixed
ee4d9e4ddf3f9c4ee2ec0a3aad6196ee36d30e57
Fixed
06935c50cfa3ac57cce80bba67b6d38ec1406e92
Fixed
36caab990b69ef4eec1d81c52a19f080b7daa059
Fixed
f58e4270c73e7f086322978d585ea67c8076ce49
Fixed
706cc36477139c1616a9b2b96610a8bb520b7119

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38460.json"