-

CVE-2025-68192

In the Linux kernel, the following vulnerability has been resolved:

net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup

Raw IP packets have no MAC header, leaving skb->mac_header uninitialized.
This can trigger kernel panics on ARM64 when xfrm or other subsystems
access the offset due to strict alignment checks.

Initialize the MAC header to prevent such crashes.

This can trigger kernel panics on ARM when running IPsec over the
qmimux0 interface.

Example trace:

    Internal error: Oops: 000000009600004f [#1] SMP
    CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.34-gbe78e49cb433 #1
    Hardware name: LS1028A RDB Board (DT)
    pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
    pc : xfrm_input+0xde8/0x1318
    lr : xfrm_input+0x61c/0x1318
    sp : ffff800080003b20
    Call trace:
     xfrm_input+0xde8/0x1318
     xfrm6_rcv+0x38/0x44
     xfrm6_esp_rcv+0x48/0xa8
     ip6_protocol_deliver_rcu+0x94/0x4b0
     ip6_input_finish+0x44/0x70
     ip6_input+0x44/0xc0
     ipv6_rcv+0x6c/0x114
     __netif_receive_skb_one_core+0x5c/0x8c
     __netif_receive_skb+0x18/0x60
     process_backlog+0x78/0x17c
     __napi_poll+0x38/0x180
     net_rx_action+0x168/0x2f0
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
Produkt Linux
Default Statusunaffected
Version < d693c47fb902b988f5752182e4f7fbde5e6dcaf9
Version c6adf77953bcec0ad63d7782479452464e50f7a3
Status affected
Version < 0aabccdcec1f4a36f95829ea2263f845bbc77223
Version c6adf77953bcec0ad63d7782479452464e50f7a3
Status affected
Version < 4e6b9004f01d0fef5b19778399bc5bf55f8c2d71
Version c6adf77953bcec0ad63d7782479452464e50f7a3
Status affected
Version < bf527b80b80a282ab5bf1540546211fc35e5cd42
Version c6adf77953bcec0ad63d7782479452464e50f7a3
Status affected
Version < dd03780c29f87c26c0e0bb7e0db528c8109461fb
Version c6adf77953bcec0ad63d7782479452464e50f7a3
Status affected
Version < ae811175cea35b03ac6d7c910f43a82a43b9c3b3
Version c6adf77953bcec0ad63d7782479452464e50f7a3
Status affected
Version < 8ab3b8f958d861a7f725a5be60769106509fbd69
Version c6adf77953bcec0ad63d7782479452464e50f7a3
Status affected
Version < e120f46768d98151ece8756ebd688b0e43dc8b29
Version c6adf77953bcec0ad63d7782479452464e50f7a3
Status affected
HerstellerLinux
Produkt Linux
Default Statusaffected
Version 4.12
Status affected
Version < 4.12
Version 0
Status unaffected
Version <= 5.4.*
Version 5.4.302
Status unaffected
Version <= 5.10.*
Version 5.10.247
Status unaffected
Version <= 5.15.*
Version 5.15.197
Status unaffected
Version <= 6.1.*
Version 6.1.159
Status unaffected
Version <= 6.6.*
Version 6.6.117
Status unaffected
Version <= 6.12.*
Version 6.12.58
Status unaffected
Version <= 6.17.*
Version 6.17.8
Status unaffected
Version <= *
Version 6.18
Status unaffected
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.06% 0.191
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
Es wurden noch keine Informationen zu CWE veröffentlicht.