CVE-2025-39956
Gravedad:
Pendiente de análisis
Tipo:
No Disponible / Otro tipo
Fecha de publicación:
09/10/2025
Última modificación:
09/10/2025
Descripción
*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
igc: don&#39;t fail igc_probe() on LED setup error<br />
<br />
When igc_led_setup() fails, igc_probe() fails and triggers kernel panic<br />
in free_netdev() since unregister_netdev() is not called. [1]<br />
This behavior can be tested using fault-injection framework, especially<br />
the failslab feature. [2]<br />
<br />
Since LED support is not mandatory, treat LED setup failures as<br />
non-fatal and continue probe with a warning message, consequently<br />
avoiding the kernel panic.<br />
<br />
[1]<br />
kernel BUG at net/core/dev.c:12047!<br />
Oops: invalid opcode: 0000 [#1] SMP NOPTI<br />
CPU: 0 UID: 0 PID: 937 Comm: repro-igc-led-e Not tainted 6.17.0-rc4-enjuk-tnguy-00865-gc4940196ab02 #64 PREEMPT(voluntary)<br />
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014<br />
RIP: 0010:free_netdev+0x278/0x2b0<br />
[...]<br />
Call Trace:<br />
<br />
igc_probe+0x370/0x910<br />
local_pci_probe+0x3a/0x80<br />
pci_device_probe+0xd1/0x200<br />
[...]<br />
<br />
[2]<br />
#!/bin/bash -ex<br />
<br />
FAILSLAB_PATH=/sys/kernel/debug/failslab/<br />
DEVICE=0000:00:05.0<br />
START_ADDR=$(grep " igc_led_setup" /proc/kallsyms \<br />
| awk &#39;{printf("0x%s", $1)}&#39;)<br />
END_ADDR=$(printf "0x%x" $((START_ADDR + 0x100)))<br />
<br />
echo $START_ADDR > $FAILSLAB_PATH/require-start<br />
echo $END_ADDR > $FAILSLAB_PATH/require-end<br />
echo 1 > $FAILSLAB_PATH/times<br />
echo 100 > $FAILSLAB_PATH/probability<br />
echo N > $FAILSLAB_PATH/ignore-gfp-wait<br />
<br />
echo $DEVICE > /sys/bus/pci/drivers/igc/bind