CVE-2025-38271

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: The Linux kernel contains a flaw within the networking subsystem. Specifically, a NULL dereference can occur in the rtnl create link() function when dev->netdev ops is NULL, potentially triggered if CONFIG NET SHAPER is defined. This issue arises from the use of netdev lock ops() when it should not be called.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.