Description

In the Linux kernel, the following vulnerability has been resolved: gve: add missing NULL check for gve_alloc_pending_packet() in TX DQO gve_alloc_pending_packet() can return NULL, but gve_tx_add_skb_dqo() did not check for this case before dereferencing the returned pointer. Add a missing NULL check to prevent a potential NULL pointer dereference when allocation fails. This improves robustness in low-memory scenarios.

INFO

Published Date :

2025-07-03T08:35:28.582Z

Last Modified :

2025-11-03T17:34:22.190Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-38122 vulnerability.

Vendors Products
Debian
  • Debian Linux
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-38122.

URL Resource
https://git.kernel.org/stable/c/12c331b29c7397ac3b03584e12902990693bc248 cve-icon cve-icon
https://git.kernel.org/stable/c/2e5ead9e4e91fbe7799bd38afd8904543be1cb51 cve-icon cve-icon
https://git.kernel.org/stable/c/7f6265fce3bd424ded666481b37f106d7915fb6b cve-icon cve-icon
https://git.kernel.org/stable/c/a0319c9b1648a67511e947a596ca86888451c0a7 cve-icon cve-icon
https://git.kernel.org/stable/c/ae98a1787fdcb0096d122bc80d93c3c7d812c04b cve-icon cve-icon
https://git.kernel.org/stable/c/c741a7ef68023ac800054e2131c3e22e647fd7e3 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html cve-icon
https://lore.kernel.org/linux-cve-announce/2025070327-CVE-2025-38122-cd8d@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-38122 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-38122 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact