CVE-2025-39853
published 2025-09-19CVE-2025-39853: In the Linux kernel, the following vulnerability has been resolved: i40e: Fix potential invalid access when MAC list is empty list_first_entry() never returns…
high7.1CVSS 3.1
AVLACLPRLUINSUCHINAH
In the Linux kernel, the following vulnerability has been resolved:
i40e: Fix potential invalid access when MAC list is empty
list_first_entry() never returns NULL - if the list is empty, it still
returns a pointer to an invalid object, leading to potential invalid
memory access when dereferenced.
Fix this by using list_first_entry_or_null instead of list_first_entry.
Affected
30 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | linux | < linux 6.1.153-1 (bookworm) | linux 6.1.153-1 (bookworm) |
| debian | linux-6.1 | < linux 6.1.153-1 (bookworm) | linux 6.1.153-1 (bookworm) |
| linux | linux | — | — |
| linux | linux | >= e3219ce6a775468368fb270fae3eb82a6787b436 < 971feafe157afac443027acdc235badc6838560b | 971feafe157afac443027acdc235badc6838560b |
| linux | linux | >= e3219ce6a775468368fb270fae3eb82a6787b436 < 3c6fb929afa313d9d11f780451d113f73922fe5d | 3c6fb929afa313d9d11f780451d113f73922fe5d |
| linux | linux | >= e3219ce6a775468368fb270fae3eb82a6787b436 < 1eadabcf5623f1237a539b16586b4ed8ac8dffcd | 1eadabcf5623f1237a539b16586b4ed8ac8dffcd |
| linux | linux | >= e3219ce6a775468368fb270fae3eb82a6787b436 < e2a5e74879f9b494bbd66fa93f355feacde450c7 | e2a5e74879f9b494bbd66fa93f355feacde450c7 |
| linux | linux | >= e3219ce6a775468368fb270fae3eb82a6787b436 < fb216d980fae6561c7c70af8ef826faf059c6515 | fb216d980fae6561c7c70af8ef826faf059c6515 |
| linux | linux | >= e3219ce6a775468368fb270fae3eb82a6787b436 < 66e7cdbda74ee823ec2bf7b830ebd235c54f5ddf | 66e7cdbda74ee823ec2bf7b830ebd235c54f5ddf |
| linux | linux | >= e3219ce6a775468368fb270fae3eb82a6787b436 < 9c21fc4cebd44dd21016c61261a683af390343f8 | 9c21fc4cebd44dd21016c61261a683af390343f8 |
| linux | linux | >= e3219ce6a775468368fb270fae3eb82a6787b436 < a556f06338e1d5a85af0e32ecb46e365547f92b9 | a556f06338e1d5a85af0e32ecb46e365547f92b9 |
| linux | linux_kernel | — | — |
| linux | linux_kernel | >= 0 < 5.10.244-1 | 5.10.244-1 |
| linux | linux_kernel | >= 0 < 6.1.153-1 | 6.1.153-1 |
| linux | linux_kernel | >= 0 < 6.12.48-1 | 6.12.48-1 |
| linux | linux_kernel | >= 0 < 6.16.6-1 | 6.16.6-1 |
| linux | linux_kernel | >= 0 < 5.15.0-163.173 | 5.15.0-163.173 |
| linux | linux_kernel | >= 0 < 6.8.0-106.106 | 6.8.0-106.106 |
| linux | linux_kernel | >= 4.6 < 5.4.299 | 5.4.299 |
| linux | linux_kernel | >= 5.11 < 5.15.192 | 5.15.192 |
| linux | linux_kernel | >= 5.16 < 6.1.151 | 6.1.151 |
| linux | linux_kernel | >= 5.5 < 5.10.243 | 5.10.243 |
| linux | linux_kernel | >= 6.13 < 6.16.6 | 6.16.6 |
| linux | linux_kernel | >= 6.2 < 6.6.105 | 6.6.105 |
CVSS provenance
nvdv3.17.1HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
osv7.1HIGH