-

CVE-2025-39853

EPSS 0.03%
Veröffentlicht 19.09.2025 15:26:25
Zuletzt bearbeitet 22.09.2025 21:23:01
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

i40e: Fix potential invalid access when MAC list is empty

list_first_entry() never returns NULL - if the list is empty, it still
returns a pointer to an invalid object, leading to potential invalid
memory access when dereferenced.

Fix this by using list_first_entry_or_null instead of list_first_entry.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 971feafe157afac443027acdc235badc6838560b

Version e3219ce6a775468368fb270fae3eb82a6787b436

Status affected

Version < 3c6fb929afa313d9d11f780451d113f73922fe5d

Version e3219ce6a775468368fb270fae3eb82a6787b436

Status affected

Version < 1eadabcf5623f1237a539b16586b4ed8ac8dffcd

Version e3219ce6a775468368fb270fae3eb82a6787b436

Status affected

Version < e2a5e74879f9b494bbd66fa93f355feacde450c7

Version e3219ce6a775468368fb270fae3eb82a6787b436

Status affected

Version < fb216d980fae6561c7c70af8ef826faf059c6515

Version e3219ce6a775468368fb270fae3eb82a6787b436

Status affected

Version < 66e7cdbda74ee823ec2bf7b830ebd235c54f5ddf

Version e3219ce6a775468368fb270fae3eb82a6787b436

Status affected

Version < 9c21fc4cebd44dd21016c61261a683af390343f8

Version e3219ce6a775468368fb270fae3eb82a6787b436

Status affected

Version < a556f06338e1d5a85af0e32ecb46e365547f92b9

Version e3219ce6a775468368fb270fae3eb82a6787b436

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 4.6

Status affected

Version < 4.6

Version 0

Status unaffected

Version <= 5.4.*

Version 5.4.299

Status unaffected

Version <= 5.10.*

Version 5.10.243

Status unaffected

Version <= 5.15.*

Version 5.15.192

Status unaffected

Version <= 6.1.*

Version 6.1.151

Status unaffected

Version <= 6.6.*

Version 6.6.105

Status unaffected

Version <= 6.12.*

Version 6.12.46

Status unaffected

Version <= 6.16.*

Version 6.16.6

Status unaffected

Version <= *

Version 6.17-rc5

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.079

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/971feafe157afac443027acdc235badc6838560b

https://git.kernel.org/stable/c/3c6fb929afa313d9d11f780451d113f73922fe5d

https://git.kernel.org/stable/c/1eadabcf5623f1237a539b16586b4ed8ac8dffcd

https://git.kernel.org/stable/c/e2a5e74879f9b494bbd66fa93f355feacde450c7

https://git.kernel.org/stable/c/fb216d980fae6561c7c70af8ef826faf059c6515

https://git.kernel.org/stable/c/66e7cdbda74ee823ec2bf7b830ebd235c54f5ddf

https://git.kernel.org/stable/c/9c21fc4cebd44dd21016c61261a683af390343f8

https://git.kernel.org/stable/c/a556f06338e1d5a85af0e32ecb46e365547f92b9

https://nvd.nist.gov/vuln/detail/CVE-2025-39853

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-39853

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-39853

EUVD