Description

In the Linux kernel, the following vulnerability has been resolved: net: dsa: microchip: Don't free uninitialized ksz_irq If something goes wrong at setup, ksz_irq_free() can be called on uninitialized ksz_irq (for example when ksz_ptp_irq_setup() fails). It leads to freeing uninitialized IRQ numbers and/or domains. Use dsa_switch_for_each_user_port_continue_reverse() in the error path to iterate only over the fully initialized ports.

INFO

Published Date :

2025-12-23T13:58:24.121Z

Last Modified :

2025-12-23T13:58:24.121Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-68338 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-68338.

URL Resource
https://git.kernel.org/stable/c/25b62cc5b22c45face094ae3e8717258e46d1d19 cve-icon cve-icon
https://git.kernel.org/stable/c/32abbcf4379a0f851d7eb9d4389e7bf5c64bf6c0 cve-icon cve-icon
https://git.kernel.org/stable/c/9428654c827fa8d38b898135d26d39ee2d544246 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025122331-CVE-2025-68338-5e65@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-68338 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-68338 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System