CVE-2025-21774

MEDIUM

Linux Kernel 6.12-6.12.15, 6.13-6.13.3, 6.14 - NULL Pointer Dereference in CAN Rockchip Driver

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: can: rockchip: rkcanfd_handle_rx_fifo_overflow_int(): bail out if skb cannot be allocated Fix NULL pointer check in rkcanfd_handle_rx_fifo_overflow_int() to bail out if skb cannot be allocated.

References (3)

Core 3

Scores

CVSS v3 5.5
EPSS 0.0020
EPSS Percentile 9.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-476
Status published
Products (12)
linux/Kernel 6.12.0 - 6.12.16linux
linux/Kernel 6.13.0 - 6.13.4linux
Linux/Linux < 6.12
Linux/Linux 6.12
Linux/Linux 6.12.16 - 6.12.*
Linux/Linux 6.13.4 - 6.13.*
Linux/Linux 6.14
Linux/Linux ff60bfbaf67f219c634cfe89a52250efe8e600d0 - 118fb35681bd2c0d2afa22f7be0ef94bb4d06849
Linux/Linux ff60bfbaf67f219c634cfe89a52250efe8e600d0 - 946750e7865df2e70045071051abf768785dd570
Linux/Linux ff60bfbaf67f219c634cfe89a52250efe8e600d0 - f7f0adfe64de08803990dc4cbecd2849c04e314a
... and 2 more
Published Feb 27, 2025
Tracked Since Feb 18, 2026