CVE-2025-22052 — NULL Pointer Dereference in Linux
Severity
5.5MEDIUMNVD
EPSS
0.1%
top 78.04%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedApr 16
Latest updateJul 8
Description
In the Linux kernel, the following vulnerability has been resolved:
staging: gpib: Fix Oops after disconnect in ni_usb
If the usb dongle is disconnected subsequent calls to the
driver cause a NULL dereference Oops as the bus_interface
is set to NULL on disconnect.
This problem was introduced by setting usb_dev from the bus_interface
for dev_xxx messages.
Previously bus_interface was checked for NULL only in the the functions
directly calling usb_fill_bulk_urb or usb_control_msg.
Check for v…
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6
Affected Packages5 packages
▶CVEListV5linux/linux4934b98bb24327c32ed55c96012f019932383da5 — b2d8d7959077c5d4b11d0dc6bd2167791fd1c72e+3
Patches
🔴Vulnerability Details
5GHSA▶
GHSA-gjvw-2pj9-fgr6: In the Linux kernel, the following vulnerability has been resolved:
staging: gpib: Fix Oops after disconnect in ni_usb
If the usb dongle is disconne↗2025-04-16
OSV▶
CVE-2025-22052: In the Linux kernel, the following vulnerability has been resolved: staging: gpib: Fix Oops after disconnect in ni_usb If the usb dongle is disconnect↗2025-04-16
📋Vendor Advisories
5Debian▶
CVE-2025-22052: linux - In the Linux kernel, the following vulnerability has been resolved: staging: gp...↗2025