7.8
CVE-2025-38270
- EPSS 0.16%
- Veröffentlicht 10.07.2025 07:41:52
- Zuletzt bearbeitet 20.11.2025 16:49:53
- CVE-Watchlists
- Unerledigt
net: drv: netdevsim: don't napi_complete() from netpoll
In the Linux kernel, the following vulnerability has been resolved: net: drv: netdevsim: don't napi_complete() from netpoll netdevsim supports netpoll. Make sure we don't call napi_complete() from it, since it may not be scheduled. Breno reports hitting a warning in napi_complete_done(): WARNING: CPU: 14 PID: 104 at net/core/dev.c:6592 napi_complete_done+0x2cc/0x560 __napi_poll+0x2d8/0x3a0 handle_softirqs+0x1fe/0x710 This is presumably after netpoll stole the SCHED bit prematurely.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.10 < 6.12.34
Linux ≫ Linux Kernel Version >= 6.13 < 6.15.3
Linux ≫ Linux Kernel Version6.16 Updaterc1
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.16% | 0.057 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
https://git.kernel.org/stable/c/a8ff2e362d901200a1075c3ca9c56d9c7bbef389
https://git.kernel.org/stable/c/6837dd877270c57689bd866de9f3de14172c2439
https://git.kernel.org/stable/c/1264971017b4d7141352a7fe29021bdfce5d885d