CVE-2025-22116

Description

In the Linux kernel, the following vulnerability has been resolved: idpf: check error for register_netdev() on init Current init logic ignores the error code from register_netdev(), which will cause WARN_ON() on attempt to unregister it, if there was one, and there is no info for the user that the creation of the netdev failed. WARNING: CPU: 89 PID: 6902 at net/core/dev.c:11512 unregister_netdevice_many_notify+0x211/0x1a10 ... [ 3707.563641] unregister_netdev+0x1c/0x30 [ 3707.563656] idpf_vport_dealloc+0x5cf/0xce0 [idpf] [ 3707.563684] idpf_deinit_task+0xef/0x160 [idpf] [ 3707.563712] idpf_vc_core_deinit+0x84/0x320 [idpf] [ 3707.563739] idpf_remove+0xbf/0x780 [idpf] [ 3707.563769] pci_device_remove+0xab/0x1e0 [ 3707.563786] device_release_driver_internal+0x371/0x530 [ 3707.563803] driver_detach+0xbf/0x180 [ 3707.563816] bus_remove_driver+0x11b/0x2a0 [ 3707.563829] pci_unregister_driver+0x2a/0x250 Introduce an error check and log the vport number and error code. On removal make sure to check VPORT_REG_NETDEV flag prior to calling unregister and free on the netdev. Add local variables for idx, vport_config and netdev for readability.

CVSS Metrics

• v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.03%• Percentile: 7%

Affected Systems

• linux•linux

  ≥ 0fe45467a1041ea3657a7fa3a791c84c104fbd34, < 1ca996324eacab8fdb7c8ac231eebe5ef0c3c454 | ≥ 0fe45467a1041ea3657a7fa3a791c84c104fbd34, < 89768e33752211b2240ec4c34138170c95f11f97 | ≥ 0fe45467a1041ea3657a7fa3a791c84c104fbd34, < 680811c67906191b237bbafe7dabbbad64649b39 | 6.7

• linux•linux_kernel

  ≥ 6.7, < 6.14.2

References (3)

• https://git.kernel.org/stable/c/89768e33752211b2240ec4c34138170c95f11f97
• https://git.kernel.org/stable/c/680811c67906191b237bbafe7dabbbad64649b39
• https://git.kernel.org/stable/c/1ca996324eacab8fdb7c8ac231eebe5ef0c3c454