Description

In the Linux kernel, the following vulnerability has been resolved: mctp i3c: handle NULL header address daddr can be NULL if there is no neighbour table entry present, in that case the tx packet should be dropped. saddr will usually be set by MCTP core, but check for NULL in case a packet is transmitted by a different protocol.

INFO

Published Date :

2025-04-01T15:40:45.262Z

Last Modified :

2025-05-04T07:23:52.726Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-21903 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-21903.

URL Resource
https://git.kernel.org/stable/c/740bf9c9b715cc327d34b1e2d4ee79fcd4c47a56 cve-icon cve-icon
https://git.kernel.org/stable/c/cf7ee25e70c6edfac4553d6b671e8b19db1d9573 cve-icon cve-icon
https://git.kernel.org/stable/c/d8be54c35aee29d96d1350b1b6f153be4da37c07 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025040128-CVE-2025-21903-4dbf@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-21903 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-21903 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact