{"id":"CVE-2025-68302","summary":"net: sxgbe: fix potential NULL dereference in sxgbe_rx()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sxgbe: fix potential NULL dereference in sxgbe_rx()\n\nCurrently, when skb is null, the driver prints an error and then\ndereferences skb on the next line.\n\nTo fix this, let's add a 'break' after the error message to switch\nto sxgbe_rx_refill(), which is similar to the approach taken by the\nother drivers in this particular case, e.g. calxeda with xgmac_rx().\n\nFound during a code review.","modified":"2026-04-16T04:36:20.773008465Z","published":"2025-12-16T15:06:20.420Z","related":["SUSE-SU-2026:0278-1","SUSE-SU-2026:0281-1","SUSE-SU-2026:0315-1","SUSE-SU-2026:20207-1","SUSE-SU-2026:20220-1","SUSE-SU-2026:20228-1","openSUSE-SU-2026:20145-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68302.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/18ef3ad1bb57dcf1a9ee61736039aedccf670b21"},{"type":"WEB","url":"https://git.kernel.org/stable/c/45b5b4ddb8d6bea5fc1625ff6f163bbb125d49cc"},{"type":"WEB","url":"https://git.kernel.org/stable/c/46e5332126596a2ca791140feab18ce1fc1a3c86"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7fd789d6ea4915034eb6bcb72f6883c8151083e5"},{"type":"WEB","url":"https://git.kernel.org/stable/c/88f46c0be77bfe45830ac33102c75be7c34ac3f3"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ac171c3c755499c9f87fe30b920602255f8b5648"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f5bce28f6b9125502abec4a67d68eabcd24b3b17"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68302.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-68302"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"1edb9ca69e8a7988900fc0283e10550b5592164d"},{"fixed":"ac171c3c755499c9f87fe30b920602255f8b5648"},{"fixed":"18ef3ad1bb57dcf1a9ee61736039aedccf670b21"},{"fixed":"46e5332126596a2ca791140feab18ce1fc1a3c86"},{"fixed":"7fd789d6ea4915034eb6bcb72f6883c8151083e5"},{"fixed":"45b5b4ddb8d6bea5fc1625ff6f163bbb125d49cc"},{"fixed":"88f46c0be77bfe45830ac33102c75be7c34ac3f3"},{"fixed":"f5bce28f6b9125502abec4a67d68eabcd24b3b17"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-68302.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"3.15.0"},{"fixed":"5.10.247"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.197"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.159"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.119"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.61"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.17.11"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-68302.json"}}],"schema_version":"1.7.5"}