Linux Kernel Vulnerability in E810 Firmware Affecting Low Latency Tx Timestamps
CVE-2025-39854

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 19 September 2025

What is CVE-2025-39854?

A vulnerability in the Linux kernel affects the E810 firmware, specifically during handling of low latency Tx timestamps. The ice_ll_ts_intr() function fails to verify whether the Tx timestamp tracking structure (ice_ptp_tx) is properly initialized prior to accessing it. This oversight could lead to NULL dereference or use-after-free issues, potentially causing system instability. The flaw has been addressed by ensuring that the accessibility checks for the tracker occur only when it is confirmed as initialized, thus preventing dangerous memory access and maintaining system integrity.

Affected Version(s)

Linux 82e71b226e0ef770d7bc143701c8b4960b4eb3d5 < 2cde98a02da958357fe240a6ba269b69d913b6ba

Linux 82e71b226e0ef770d7bc143701c8b4960b4eb3d5 < 923c267bdbb64f65bc1149d184efcf8b047d7d64

Linux 82e71b226e0ef770d7bc143701c8b4960b4eb3d5

References

https://git.kernel.org/stable/c/2cde98a02da958357fe240a6b...

https://git.kernel.org/stable/c/923c267bdbb64f65bc1149d18...

https://git.kernel.org/stable/c/f6486338fde3f04ed0ec59fe6...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 19, 2025
Vulnerability Reserved
Apr 16, 2025