We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-21903

mctp i3c: handle NULL header address



Description

In the Linux kernel, the following vulnerability has been resolved: mctp i3c: handle NULL header address daddr can be NULL if there is no neighbour table entry present, in that case the tx packet should be dropped. saddr will usually be set by MCTP core, but check for NULL in case a packet is transmitted by a different protocol.

Reserved 2024-12-29 | Published 2025-04-01 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

c8755b29b58ec65be17bcb8c40763d2dcb1f1db5 before d8be54c35aee29d96d1350b1b6f153be4da37c07
affected

c8755b29b58ec65be17bcb8c40763d2dcb1f1db5 before 740bf9c9b715cc327d34b1e2d4ee79fcd4c47a56
affected

c8755b29b58ec65be17bcb8c40763d2dcb1f1db5 before cf7ee25e70c6edfac4553d6b671e8b19db1d9573
affected

Default status
affected

6.7
affected

Any version before 6.7
unaffected

6.12.19
unaffected

6.13.7
unaffected

6.14
unaffected

References

git.kernel.org/...c/d8be54c35aee29d96d1350b1b6f153be4da37c07

git.kernel.org/...c/740bf9c9b715cc327d34b1e2d4ee79fcd4c47a56

git.kernel.org/...c/cf7ee25e70c6edfac4553d6b671e8b19db1d9573

cve.org (CVE-2025-21903)

nvd.nist.gov (CVE-2025-21903)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-21903

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.