CNNVD-202511-085 Information

CNNVD ID

CNNVD-202511-085

Related CVE

CVE-2025-40107

• CNNVD Published: 2025-11-03

Description (Chinese)

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于hi311x驱动程序中未正确初始化工作队列，可能导致空指针取消引用。

Description (English)

Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. There is a security loophole in Linux Kernel, which stems from the incorrect initialization of the task force column in the hi311x drive, which may lead to the removal of the reference to the blank pointer.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Linux

Published

2025-11-03

Last Modified

2026-02-24

References

https://git.kernel.org/stable/c/1d2ef21f02baff0c109ad78b9e835fb4acb14533 https://git.kernel.org/stable/c/e93af787187e585933570563c643337fa731584a https://git.kernel.org/stable/c/6b696808472197b77b888f50bc789a3bae077743 https://git.kernel.org/stable/c/d1fc4c041459e2d4856c1b2501486ba4f0cbf96b https://git.kernel.org/stable/c/fd00cf38fd437c979f0e5905e3ebdfc3f55a4b96 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40107 https://vigilance.fr/vulnerability/Linux-kernel-NULL-pointer-dereference-via-net-can-spi-hi311x-c-48654

Patch

https://git.kernel.org/stable/c/1d2ef21f02baff0c109ad78b9e835fb4acb14533