CVE-2025-39897

MEDIUM

Linux Kernel 6.8-6.12.46, 6.13.0-6.16.6 - Use-After-Free in AXI Ethernet RX Metadata Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: net: xilinx: axienet: Add error handling for RX metadata pointer retrieval Add proper error checking for dmaengine_desc_get_metadata_ptr() which can return an error pointer and lead to potential crashes or undefined behaviour if the pointer retrieval fails. Properly handle the error by unmapping DMA buffer, freeing the skb and returning early to prevent further processing with invalid data.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/d0ecda6fdd840b406df6617b003b036f65dd8926

Patch

https://git.kernel.org/stable/c/92e2fc92bc4eb2bc0e84404316fbc02ddd0a3196

Patch

https://git.kernel.org/stable/c/8bbceba7dc5090c00105e006ce28d1292cfda8dd

Scores

CVSS v3 5.5

EPSS 0.0013

EPSS Percentile 3.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (12)

linux/Kernel 6.13.0 - 6.16.6linux

linux/Kernel 6.8.0 - 6.12.46linux

Linux/Linux < 6.8

Linux/Linux 6.12.46 - 6.12.*

Linux/Linux 6.16.6 - 6.16.*

Linux/Linux 6.17

Linux/Linux 6.8

Linux/Linux 6a91b846af85a24241decd686269e8e038eb13d1 - 8bbceba7dc5090c00105e006ce28d1292cfda8dd

Linux/Linux 6a91b846af85a24241decd686269e8e038eb13d1 - 92e2fc92bc4eb2bc0e84404316fbc02ddd0a3196

Linux/Linux 6a91b846af85a24241decd686269e8e038eb13d1 - d0ecda6fdd840b406df6617b003b036f65dd8926

... and 2 more

Published Oct 01, 2025

Tracked Since Feb 18, 2026