CVE-2025-21953

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-21953
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-21953.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-21953
Downstream
Related
Published
2025-04-01T15:46:54Z
Modified
2025-10-22T09:27:11.905435Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
net: mana: cleanup mana struct after debugfs_remove()
Details

In the Linux kernel, the following vulnerability has been resolved:

net: mana: cleanup mana struct after debugfs_remove()

When on a MANA VM hibernation is triggered, as part of hibernatesnapshot(), managdsuspend() and managdresume() are called. If during this managdresume(), a failure occurs with HWC creation, manaportdebugfs pointer does not get reinitialized and ends up pointing to older, cleaned-up dentry. Further in the hibernation path, as part of powerdown(), managdshutdown() is triggered. This call, unaware of the failures in resume, tries to cleanup the already cleaned up manaportdebugfs value and hits the following bug:

[ 191.359296] mana 7870:00:00.0: Shutdown was called [ 191.359918] BUG: kernel NULL pointer dereference, address: 0000000000000098 [ 191.360584] #PF: supervisor write access in kernel mode [ 191.361125] #PF: errorcode(0x0002) - not-present page [ 191.361727] PGD 1080ea067 P4D 0 [ 191.362172] Oops: Oops: 0002 [#1] SMP NOPTI [ 191.362606] CPU: 11 UID: 0 PID: 1674 Comm: bash Not tainted 6.14.0-rc5+ #2 [ 191.363292] Hardware name: Microsoft Corporation Virtual Machine/Virtual Machine, BIOS Hyper-V UEFI Release v4.1 11/21/2024 [ 191.364124] RIP: 0010:downwrite+0x19/0x50 [ 191.364537] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 44 00 00 55 48 89 e5 53 48 89 fb e8 de cd ff ff 31 c0 ba 01 00 00 00 <f0> 48 0f b1 13 75 16 65 48 8b 05 88 24 4c 6a 48 89 43 08 48 8b 5d [ 191.365867] RSP: 0000:ff45fbe0c1c037b8 EFLAGS: 00010246 [ 191.366350] RAX: 0000000000000000 RBX: 0000000000000098 RCX: ffffff8100000000 [ 191.366951] RDX: 0000000000000001 RSI: 0000000000000064 RDI: 0000000000000098 [ 191.367600] RBP: ff45fbe0c1c037c0 R08: 0000000000000000 R09: 0000000000000001 [ 191.368225] R10: ff45fbe0d2b01000 R11: 0000000000000008 R12: 0000000000000000 [ 191.368874] R13: 000000000000000b R14: ff43dc27509d67c0 R15: 0000000000000020 [ 191.369549] FS: 00007dbc5001e740(0000) GS:ff43dc663f380000(0000) knlGS:0000000000000000 [ 191.370213] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 191.370830] CR2: 0000000000000098 CR3: 0000000168e8e002 CR4: 0000000000b73ef0 [ 191.371557] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 191.372192] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400 [ 191.372906] Call Trace: [ 191.373262] <TASK> [ 191.373621] ? showregs+0x64/0x70 [ 191.374040] ? _die+0x24/0x70 [ 191.374468] ? pagefaultoops+0x290/0x5b0 [ 191.374875] ? douseraddrfault+0x448/0x800 [ 191.375357] ? excpagefault+0x7a/0x160 [ 191.375971] ? asmexcpagefault+0x27/0x30 [ 191.376416] ? downwrite+0x19/0x50 [ 191.376832] ? downwrite+0x12/0x50 [ 191.377232] simplerecursiveremoval+0x4a/0x2a0 [ 191.377679] ? _pfxremoveone+0x10/0x10 [ 191.378088] debugfsremove+0x44/0x70 [ 191.378530] manadetach+0x17c/0x4f0 [ 191.378950] ? _flushwork+0x1e2/0x3b0 [ 191.379362] ? _condresched+0x1a/0x50 [ 191.379787] manaremove+0xf2/0x1a0 [ 191.380193] managdshutdown+0x3b/0x70 [ 191.380642] pcideviceshutdown+0x3a/0x80 [ 191.381063] deviceshutdown+0x13e/0x230 [ 191.381480] kernelpoweroff+0x35/0x80 [ 191.381890] hibernate+0x3c6/0x470 [ 191.382312] statestore+0xcb/0xd0 [ 191.382734] kobjattrstore+0x12/0x30 [ 191.383211] sysfskfwrite+0x3e/0x50 [ 191.383640] kernfsfopwriteiter+0x140/0x1d0 [ 191.384106] vfswrite+0x271/0x440 [ 191.384521] ksyswrite+0x72/0xf0 [ 191.384924] _x64syswrite+0x19/0x20 [ 191.385313] x64syscall+0x2b0/0x20b0 [ 191.385736] dosyscall64+0x79/0x150 [ 191.386146] ? _modmemcglruvecstate+0xe7/0x240 [ 191.386676] ? _lruvecstatmodfolio+0x79/0xb0 [ 191.387124] ? _pfxlruadd+0x10/0x10 [ 191.387515] ? queuedspinunlock+0x9/0x10 [ 191.387937] ? doanonymouspage+0x33c/0xa00 [ 191.388374] ? _handlemmfault+0xcf3/0x1210 [ 191.388805] ? _countmemcgevents+0xbe/0x180 [ 191.389235] ? handlemm_fault+0xae/0x300 [ 19 ---truncated---

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
6607c17c6c5e029da03a90085db22daf518232bf
Fixed
a1466112fb6e819261272ad75e7db750a43b78bf
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
6607c17c6c5e029da03a90085db22daf518232bf
Fixed
3e64bb2ae7d9f2b3a8259d4d6b86ed1984d5460a

Affected versions

v6.*

v6.12
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.13.1
v6.13.2
v6.13.3
v6.13.4
v6.13.5
v6.13.6
v6.13.7
v6.14-rc1
v6.14-rc2
v6.14-rc3
v6.14-rc4
v6.14-rc5

Database specific

vanir_signatures

[
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "284622062686289885835645054832290702954",
            "length": 97.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/gdma_main.c",
            "function": "mana_driver_exit"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a1466112fb6e819261272ad75e7db750a43b78bf",
        "id": "CVE-2025-21953-05d17b5a",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "101269000088160833714475721187380260542",
            "length": 188.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/gdma_main.c",
            "function": "mana_driver_init"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a1466112fb6e819261272ad75e7db750a43b78bf",
        "id": "CVE-2025-21953-1157f36e",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "47452668741371013234733931460467096474",
            "length": 251.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/gdma_main.c",
            "function": "mana_gd_shutdown"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a1466112fb6e819261272ad75e7db750a43b78bf",
        "id": "CVE-2025-21953-11ccc3df",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "8494637271703917226242812922441208497",
            "length": 274.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/gdma_main.c",
            "function": "mana_gd_remove"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3e64bb2ae7d9f2b3a8259d4d6b86ed1984d5460a",
        "id": "CVE-2025-21953-1831ef7c",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "79750985973722968950671393927319198585",
                "304242310943163036795460954189479461626",
                "2719695627133222156064726919470516534",
                "184486445731785032088971366604969332020",
                "324293581569988156903967767572836660377",
                "49133671033367722920473152795136356179",
                "77159986636764326686516851591180374688",
                "121121562598453931110378211341961641768",
                "157890331649433920027572359135466148618",
                "126515064973361097624073585346532990476",
                "44804930128431655814411087060725396962",
                "95132457687738436912721033365329002512",
                "218446106965568585387639273009327897480",
                "54154080894212263193829027011881876248",
                "238383620708586079888599325162545419105",
                "314852957848591452202506879982081354147"
            ]
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/mana_en.c"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3e64bb2ae7d9f2b3a8259d4d6b86ed1984d5460a",
        "id": "CVE-2025-21953-2e956f19",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "261634480070858825923487618301324146616",
            "length": 1511.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/gdma_main.c",
            "function": "mana_gd_probe"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3e64bb2ae7d9f2b3a8259d4d6b86ed1984d5460a",
        "id": "CVE-2025-21953-33e89939",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "323444787036572043058581197050614042602",
            "length": 384.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/mana_en.c",
            "function": "mana_destroy_eq"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a1466112fb6e819261272ad75e7db750a43b78bf",
        "id": "CVE-2025-21953-47cb3653",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "112493439976261384793595630731222138628",
            "length": 668.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/mana_en.c",
            "function": "mana_destroy_txq"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3e64bb2ae7d9f2b3a8259d4d6b86ed1984d5460a",
        "id": "CVE-2025-21953-54650861",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "27438257966985791662052155306349455969",
            "length": 1067.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/mana_en.c",
            "function": "mana_destroy_rxq"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a1466112fb6e819261272ad75e7db750a43b78bf",
        "id": "CVE-2025-21953-5cabbae7",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "79750985973722968950671393927319198585",
                "304242310943163036795460954189479461626",
                "2719695627133222156064726919470516534",
                "184486445731785032088971366604969332020",
                "324293581569988156903967767572836660377",
                "49133671033367722920473152795136356179",
                "77159986636764326686516851591180374688",
                "121121562598453931110378211341961641768",
                "157890331649433920027572359135466148618",
                "126515064973361097624073585346532990476",
                "44804930128431655814411087060725396962",
                "95132457687738436912721033365329002512",
                "218446106965568585387639273009327897480",
                "54154080894212263193829027011881876248",
                "238383620708586079888599325162545419105",
                "314852957848591452202506879982081354147"
            ]
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/mana_en.c"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a1466112fb6e819261272ad75e7db750a43b78bf",
        "id": "CVE-2025-21953-620d5e61",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "168311617945094157486303190718554222077",
            "length": 137.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/mana_en.c",
            "function": "mana_cleanup_port_context"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3e64bb2ae7d9f2b3a8259d4d6b86ed1984d5460a",
        "id": "CVE-2025-21953-694d9e03",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "205069788626884170441969339592498211847",
                "21064562790078568418271715178268027775",
                "176593010307991219142311337495500252973",
                "173845129916275386244085532172029175181",
                "114351501048844374548352543645971901603",
                "96576355190923774839346631626855613342",
                "37264058801410735811735047344938428235",
                "237356498265785853987474648886832587738",
                "59061091160113317252492908496936575436",
                "316906556349900226665407819309118584876",
                "194936385119149480048421569437613276083",
                "7073770909844975270659729558439517657",
                "135666093712073423417065408132921903387",
                "48945579697069397411189730586902666486",
                "205021913673695317006881171206662303995",
                "50504502210502036739765964181952896538",
                "32422616604055583056008498949787204829",
                "74074208175737253132681349348297491202",
                "52668884740766130904776540477454595587"
            ]
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/gdma_main.c"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3e64bb2ae7d9f2b3a8259d4d6b86ed1984d5460a",
        "id": "CVE-2025-21953-6e67de3d",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "8494637271703917226242812922441208497",
            "length": 274.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/gdma_main.c",
            "function": "mana_gd_remove"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a1466112fb6e819261272ad75e7db750a43b78bf",
        "id": "CVE-2025-21953-76c87147",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "47452668741371013234733931460467096474",
            "length": 251.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/gdma_main.c",
            "function": "mana_gd_shutdown"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3e64bb2ae7d9f2b3a8259d4d6b86ed1984d5460a",
        "id": "CVE-2025-21953-77f03891",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "284622062686289885835645054832290702954",
            "length": 97.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/gdma_main.c",
            "function": "mana_driver_exit"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3e64bb2ae7d9f2b3a8259d4d6b86ed1984d5460a",
        "id": "CVE-2025-21953-931a9754",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "323444787036572043058581197050614042602",
            "length": 384.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/mana_en.c",
            "function": "mana_destroy_eq"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3e64bb2ae7d9f2b3a8259d4d6b86ed1984d5460a",
        "id": "CVE-2025-21953-9415f936",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "27438257966985791662052155306349455969",
            "length": 1067.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/mana_en.c",
            "function": "mana_destroy_rxq"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3e64bb2ae7d9f2b3a8259d4d6b86ed1984d5460a",
        "id": "CVE-2025-21953-a9e84116",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "101269000088160833714475721187380260542",
            "length": 188.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/gdma_main.c",
            "function": "mana_driver_init"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3e64bb2ae7d9f2b3a8259d4d6b86ed1984d5460a",
        "id": "CVE-2025-21953-b5b4842c",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "261634480070858825923487618301324146616",
            "length": 1511.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/gdma_main.c",
            "function": "mana_gd_probe"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a1466112fb6e819261272ad75e7db750a43b78bf",
        "id": "CVE-2025-21953-ba5d81f4",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "168311617945094157486303190718554222077",
            "length": 137.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/mana_en.c",
            "function": "mana_cleanup_port_context"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a1466112fb6e819261272ad75e7db750a43b78bf",
        "id": "CVE-2025-21953-bd1f1a8f",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "205069788626884170441969339592498211847",
                "21064562790078568418271715178268027775",
                "176593010307991219142311337495500252973",
                "173845129916275386244085532172029175181",
                "114351501048844374548352543645971901603",
                "96576355190923774839346631626855613342",
                "37264058801410735811735047344938428235",
                "237356498265785853987474648886832587738",
                "59061091160113317252492908496936575436",
                "316906556349900226665407819309118584876",
                "194936385119149480048421569437613276083",
                "7073770909844975270659729558439517657",
                "135666093712073423417065408132921903387",
                "48945579697069397411189730586902666486",
                "205021913673695317006881171206662303995",
                "50504502210502036739765964181952896538",
                "32422616604055583056008498949787204829",
                "74074208175737253132681349348297491202",
                "52668884740766130904776540477454595587"
            ]
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/gdma_main.c"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a1466112fb6e819261272ad75e7db750a43b78bf",
        "id": "CVE-2025-21953-d80610de",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "112493439976261384793595630731222138628",
            "length": 668.0
        },
        "target": {
            "file": "drivers/net/ethernet/microsoft/mana/mana_en.c",
            "function": "mana_destroy_txq"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a1466112fb6e819261272ad75e7db750a43b78bf",
        "id": "CVE-2025-21953-f1782ed4",
        "deprecated": false,
        "signature_version": "v1"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.13.8