CVE-2025-37787

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> net: dsa: mv88e6xxx: avoid unregistering devlink regions which were never registered<br /> <br /> Russell King reports that a system with mv88e6xxx dereferences a NULL<br /> pointer when unbinding this driver:<br /> https://lore.kernel.org/netdev/Z_lRkMlTJ1KQ0kVX@shell.armlinux.org.uk/<br /> <br /> The crash seems to be in devlink_region_destroy(), which is not NULL<br /> tolerant but is given a NULL devlink global region pointer.<br /> <br /> At least on some chips, some devlink regions are conditionally registered<br /> since the blamed commit, see mv88e6xxx_setup_devlink_regions_global():<br /> <br /> if (cond &amp;&amp; !cond(chip))<br /> continue;<br /> <br /> These are MV88E6XXX_REGION_STU and MV88E6XXX_REGION_PVT. If the chip<br /> does not have an STU or PVT, it should crash like this.<br /> <br /> To fix the issue, avoid unregistering those regions which are NULL, i.e.<br /> were skipped at mv88e6xxx_setup_devlink_regions_global() time.