CVE-2025-39857
- Source
- https://cve.org/CVERecord?id=CVE-2025-39857
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-39857.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-39857
- Downstream
- Related
- Published
- 2025-09-19T15:26:28.225Z
- Modified
- 2026-05-28T03:54:46.150798864Z
- Summary
- net/smc: fix one NULL pointer dereference in smc_ib_is_sg_need_sync()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
net/smc: fix one NULL pointer dereference in smcibissgneed_sync()
BUG: kernel NULL pointer dereference, address: 00000000000002ec PGD 0 P4D 0 Oops: Oops: 0000 [#1] SMP PTI CPU: 28 UID: 0 PID: 343 Comm: kworker/28:1 Kdump: loaded Tainted: G OE 6.17.0-rc2+ #9 NONE Tainted: [O]=OOTMODULE, [E]=UNSIGNEDMODULE Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014 Workqueue: smchswq smclistenwork [smc] RIP: 0010:smcibissgneedsync+0x9e/0xd0 [smc] ... Call Trace: <TASK> smcrbufmaplink+0x211/0x2a0 [smc] _smcbufcreate+0x522/0x970 [smc] smcbufcreate+0x3a/0x110 [smc] smcfindrdmav2deviceserv+0x18f/0x240 [smc] ? smcvlanbytcpsk+0x7e/0xe0 [smc] smclistenfinddevice+0x1dd/0x2b0 [smc] smclistenwork+0x30f/0x580 [smc] processonework+0x18c/0x340 workerthread+0x242/0x360 kthread+0xe7/0x220 retfromfork+0x13a/0x160 retfromforkasm+0x1a/0x30 </TASK>
If the software RoCE device is used, ibdev->dma_device is a null pointer. As a result, the problem occurs. Null pointer detection is added to prevent problems.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39857.json" }- References
-
- https://cert-portal.siemens.com/productcert/html/ssa-032379.html
- https://git.kernel.org/stable/c/0cdf1fd8fc59d44a48c694324611136910301ef9
- https://git.kernel.org/stable/c/34f17cbe027050b8d5316ea1b6f9bd7c378e92de
- https://git.kernel.org/stable/c/ba1e9421cf1a8369d25c3832439702a015d6b5f9
- https://git.kernel.org/stable/c/eb929910bd4b4165920fa06a87b22cc6cae92e0e
- https://git.kernel.org/stable/c/f18d9b3abf9c6587372cc702f963a7592277ed56
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39857.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-39857
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0ef69e788411cba2af017db731a9fc62d255e9acFixed0cdf1fd8fc59d44a48c694324611136910301ef9Fixedf18d9b3abf9c6587372cc702f963a7592277ed56Fixedeb929910bd4b4165920fa06a87b22cc6cae92e0eFixed34f17cbe027050b8d5316ea1b6f9bd7c378e92deFixedba1e9421cf1a8369d25c3832439702a015d6b5f9