Linux Kernel Vulnerability in PTP Callback Handling
CVE-2025-21814

5.5MEDIUM

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 27 February 2025

What is CVE-2025-21814?

A vulnerability exists in the Linux kernel related to the Precision Time Protocol (PTP) drivers, where the ioctl and sysfs handlers unconditionally invoke the ->enable callback. This can lead to NULL dereferences in scenarios where some drivers, such as ptp_s390.c, ptp_vclock.c, and ptp_mock.c, do not implement this callback properly. The solution involves implementing a dummy callback in the absence of a specified driver callback, ensuring more robust handling of driver operations.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux d94ba80ebbea17f036cecb104398fbcd788aa742

Linux d94ba80ebbea17f036cecb104398fbcd788aa742 < 9df3a9284f39bfd51a9f72a6a165c79e2aa5066b

Linux d94ba80ebbea17f036cecb104398fbcd788aa742 < 1334c64a5d1de6666e0c9f984db6745083df1eb4

References

https://git.kernel.org/stable/c/fdc1e72487781dd7705bcbe30...

https://git.kernel.org/stable/c/9df3a9284f39bfd51a9f72a6a...

https://git.kernel.org/stable/c/1334c64a5d1de6666e0c9f984...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 27, 2025
Vulnerability Reserved
Dec 29, 2024

JSON

Linux

What is CVE-2025-21814?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.