{"id":"CVE-2025-21904","summary":"caif_virtio: fix wrong pointer check in cfv_probe()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ncaif_virtio: fix wrong pointer check in cfv_probe()\n\ndel_vqs() frees virtqueues, therefore cfv-\u003evq_tx pointer should be checked\nfor NULL before calling it, not cfv-\u003evdev. Also the current implementation\nis redundant because the pointer cfv-\u003evdev is dereferenced before it is\nchecked for NULL.\n\nFix this by checking cfv-\u003evq_tx for NULL instead of cfv-\u003evdev before\ncalling del_vqs().","modified":"2026-04-02T12:45:16.931626Z","published":"2025-04-01T15:40:45.881Z","related":["SUSE-SU-2025:01614-1","SUSE-SU-2025:01707-1","SUSE-SU-2025:01919-1","SUSE-SU-2025:01951-1","SUSE-SU-2025:01964-1","SUSE-SU-2025:01967-1","SUSE-SU-2025:20343-1","SUSE-SU-2025:20344-1","SUSE-SU-2025:20354-1","SUSE-SU-2025:20355-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/21xxx/CVE-2025-21904.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/29e0cd296c87240278e2f7ea4cf3f496b60c03af"},{"type":"WEB","url":"https://git.kernel.org/stable/c/56cddf71cce3b15b078e937fadab29962b6f6643"},{"type":"WEB","url":"https://git.kernel.org/stable/c/597c27e5f04cb50e56cc9aeda75d3e42b6b89c3e"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7b5fe58959822e6cfa884327cabba6be3b01883d"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8e4e08ca4cc634b337bb74bc9a70758fdeda0bcb"},{"type":"WEB","url":"https://git.kernel.org/stable/c/90d302619ee7ce5ed0c69c29c290bdccfde66418"},{"type":"WEB","url":"https://git.kernel.org/stable/c/990fff6980d0c1693d60a812f58dbf93eab0473f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/a466fd7e9fafd975949e5945e2f70c33a94b1a70"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/21xxx/CVE-2025-21904.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-21904"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0d2e1a2926b1839a4b74519e660739b2566c9386"},{"fixed":"990fff6980d0c1693d60a812f58dbf93eab0473f"},{"fixed":"7b5fe58959822e6cfa884327cabba6be3b01883d"},{"fixed":"8e4e08ca4cc634b337bb74bc9a70758fdeda0bcb"},{"fixed":"29e0cd296c87240278e2f7ea4cf3f496b60c03af"},{"fixed":"90d302619ee7ce5ed0c69c29c290bdccfde66418"},{"fixed":"56cddf71cce3b15b078e937fadab29962b6f6643"},{"fixed":"597c27e5f04cb50e56cc9aeda75d3e42b6b89c3e"},{"fixed":"a466fd7e9fafd975949e5945e2f70c33a94b1a70"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-21904.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}