PT-2025-14306 · Linux+7 · Linux Kernel+7
Published
2025-04-01
·
Updated
2026-04-20
·
CVE-2025-21925
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to the fixed version
Description
A vulnerability in the Linux kernel has been resolved, where the
llc module uses skb get() before dev queue xmit(), which can cause a crash when using devices that do not support IFF TX SKB SHARING. The e1000 driver is affected, and the issue can be triggered by syzbot. The vulnerability can cause a kernel bug, leading to an invalid opcode error. It is recommended to audit other skb get() uses in net/llc.Recommendations
To resolve the issue, replace
skb get() with skb clone() in net/llc/llc s ac.c.
As a temporary workaround, consider disabling the llc module until a patch is available.
Restrict access to the e1000 driver to minimize the risk of exploitation.
Avoid using devices that do not support IFF TX SKB SHARING until the issue is resolved.Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu
E1000