{"uuid": "7cd558ce-1b15-41b1-a98a-c18d7d5cfb0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22050", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14807", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22050\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nusbnet:fix NPE during rx_complete\n\nMissing usbnet_going_away Check in Critical Path.\nThe usb_submit_urb function lacks a usbnet_going_away\nvalidation, whereas __usbnet_queue_skb includes this check.\n\nThis inconsistency creates a race condition where:\nA URB request may succeed, but the corresponding SKB data\nfails to be queued.\n\nSubsequent processes:\n(e.g., rx_complete \u2192 defer_bh \u2192 __skb_unlink(skb, list))\nattempt to access skb->next, triggering a NULL pointer\ndereference (Kernel Panic).\n\ud83d\udccf Published: 2025-04-16T14:12:08.954Z\n\ud83d\udccf Modified: 2025-05-04T13:06:57.080Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/95789c2f94fd29dce8759f9766baa333f749287c\n2. https://git.kernel.org/stable/c/0f10f83acfd619e13c64d6705908dfd792f19544\n3. https://git.kernel.org/stable/c/acacd48a37b52fc95f621765762c04152b58d642\n4. https://git.kernel.org/stable/c/d689645cd1594ea1d13cb0c404f8ad1011353e0e\n5. https://git.kernel.org/stable/c/0c30988588b28393e3e8873d5654f910e86391ba\n6. https://git.kernel.org/stable/c/fd9ee3f0d6a53844f65efde581c91bbb0ff749ac\n7. https://git.kernel.org/stable/c/51de3600093429e3b712e5f091d767babc5dd6df", "creation_timestamp": "2025-05-04T13:18:52.000000Z"}