CVE-2025-21798

Sažetak

In the Linux kernel, the following vulnerability has been resolved: firewire: test: Fix potential null dereference in firewire kunit test kunit_kzalloc() may return a NULL pointer, dereferencing it without NULL check may lead to NULL dereference. Add a NULL check for test_state.

Reference

https://git.kernel.org/stable/c/352fafe97784e81a10a7c74bd508f71a19b53c2a
https://git.kernel.org/stable/c/70fcb25472d90dd3b87cbee74b9eb68670b0c7b8
https://git.kernel.org/stable/c/c6896bf4c611c3dd126f3e03685f2360a18b3d6f

CVSS

Base:	5.5
Impact:	3.6
Exploitability:	1.8

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	LOW

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	HIGH

CVSS vektor

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Zadnje važnije ažuriranje

05-03-2025 - 14:05

Objavljeno

27-02-2025 - 20:16