Vulnerability Lookup

🛡️ CVE-2025-38665

🟡 CVSS 5.5 — Medium ✅ No Known Exploit CWE-476 NVD

5.5

CVSS Score

0 Low4 Medium7 High9 Critical10

Description

In the Linux kernel, the following vulnerability has been resolved: can: netlink: can_changelink(): fix NULL pointer deref of struct can_priv::do_set_mode Andrei Lalaev reported a NULL pointer deref when a CAN device is restarted from Bus Off and the driver does not implement the struct can_priv::do_set_mode callback. There are 2 code path that call struct can_priv::do_set_mode: - directly by a manual restart from the user space, via can_changelink() - delayed automatic restart after bus off (deactivated by default) To prevent the NULL pointer deference, refuse a manual restart or configure the automatic restart delay in can_changelink() and report the error via extack to user space. As an additional safety measure let can_restart() return an error if can_priv::do_set_mode is not set instead of dereferencing it unchecked.

Details

Severity MEDIUM

CVSS Score 5.5

CVSS Vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE CWE-476

Public Exploit ✅ No

Source NVD

Published 2025-08-22

Updated 2026-06-02

Modified 2026-01-07

Fix URL https://git.kernel.org/stable/c/0ca816a96fdcf32644c80cbe7a82c7b6ce6ddda5

Affected Packages

Software	From version	Fixed in
debian-linux	—	—
linux-kernel	—	—

References

Patch https://git.kernel.org/stable/c/0ca816a96fdcf32644c80cbe7a82c7b6ce6ddda5

Patch https://git.kernel.org/stable/c/6acceb46180f9e160d4f0c56fcaf39ba562822ae

Patch https://git.kernel.org/stable/c/6bbcf37c5114926c99a1d1e6993a5b35689d2599

Patch https://git.kernel.org/stable/c/c1f3f9797c1f44a762e6f5f72520b2e520537b52

Patch https://git.kernel.org/stable/c/cf81a60a973358dea163f6b14062f17831ceb894

Third Party Advisory https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html

🔗 NVD 🔗 Mitre ✅ Fix / Advisory

Similar Threats

Patch Gap Protection

Running software with known vulnerabilities?

BotEraser can help reduce exposure by blocking IPs associated with exploit activity — even before a patch is available.

Start Free →

No credit card required · Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.

Running software with known vulnerabilities?

Company

Resources

Services

Trusted

Subscribe