Linux Kernel Memory Allocation Vulnerability in Ethernet Driver by TI
CVE-2025-38545

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 August 2025

What is CVE-2025-38545?

A memory allocation issue was identified in the Linux kernel's Ethernet driver used by Texas Instruments, specifically within the am65-cpsw-nuss module. The transition from netdev_alloc_ip_align() to build_skb() did not allocate sufficient memory for the skb_shared_info, which is crucial for proper packet handling. The fix involves correctly accounting for the size of the skb by ensuring that PAGE_SIZE is allocated, inclusive of the required packet length, headroom, and tailroom. This adjustment rectifies potential memory access problems, enhancing the overall security and stability of the Ethernet driver.

Affected Version(s)

Linux 8acacc40f7337527ff84cd901ed2ef0a2b95b2b6

Linux 8acacc40f7337527ff84cd901ed2ef0a2b95b2b6 < 7d6ca0c8c0caf9a13cae2de763bb1f2a9ea7eabb

Linux 8acacc40f7337527ff84cd901ed2ef0a2b95b2b6 < 02c4d6c26f1f662da8885b299c224ca6628ad232

References

https://git.kernel.org/stable/c/fc2fffa2facac15ce711e95f9...
https://git.kernel.org/stable/c/7d6ca0c8c0caf9a13cae2de76...
https://git.kernel.org/stable/c/02c4d6c26f1f662da8885b299...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-38545 : Linux Kernel Memory Allocation Vulnerability in Ethernet Driver by TI