{"id":"CVE-2025-22063","summary":"netlabel: Fix NULL pointer exception caused by CALIPSO on IPv4 sockets","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetlabel: Fix NULL pointer exception caused by CALIPSO on IPv4 sockets\n\nWhen calling netlbl_conn_setattr(), addr-\u003esa_family is used\nto determine the function behavior. If sk is an IPv4 socket,\nbut the connect function is called with an IPv6 address,\nthe function calipso_sock_setattr() is triggered.\nInside this function, the following code is executed:\n\nsk_fullsock(__sk) ? inet_sk(__sk)-\u003epinet6 : NULL;\n\nSince sk is an IPv4 socket, pinet6 is NULL, leading to a\nnull pointer dereference.\n\nThis patch fixes the issue by checking if inet6_sk(sk)\nreturns a NULL pointer before accessing pinet6.","modified":"2026-04-16T00:02:46.948725882Z","published":"2025-04-16T14:12:18.222Z","related":["SUSE-SU-2025:01919-1","SUSE-SU-2025:01951-1","SUSE-SU-2025:01964-1","SUSE-SU-2025:01965-1","SUSE-SU-2025:01967-1","SUSE-SU-2025:01972-1","SUSE-SU-2025:01983-1","SUSE-SU-2025:02000-1","SUSE-SU-2025:20408-1","SUSE-SU-2025:20413-1","SUSE-SU-2025:20419-1","SUSE-SU-2025:20421-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/22xxx/CVE-2025-22063.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/078aabd567de3d63d37d7673f714e309d369e6e2"},{"type":"WEB","url":"https://git.kernel.org/stable/c/172a8a996a337206970467e871dd995ac07640b1"},{"type":"WEB","url":"https://git.kernel.org/stable/c/1927d0bcd5b81e80971bf6b8eba267508bd1c78b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/1ad9166cab6a0f5c0b10344a97bdf749ae11dcbf"},{"type":"WEB","url":"https://git.kernel.org/stable/c/1e38f7a6cdd68377f8a4189b2fbaec14a6dd5152"},{"type":"WEB","url":"https://git.kernel.org/stable/c/3ba9cf69de50e8abed32b448616c313baa4c5712"},{"type":"WEB","url":"https://git.kernel.org/stable/c/797e5371cf55463b4530bab3fef5f27f7c6657a8"},{"type":"WEB","url":"https://git.kernel.org/stable/c/9fe3839588db7519030377b7dee3f165e654f6c5"},{"type":"WEB","url":"https://git.kernel.org/stable/c/a7e89541d05b98c79a51c0f95df020f8e82b62ed"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/22xxx/CVE-2025-22063.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-22063"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"ceba1832b1b2da0149c51de62a847c00bca1677a"},{"fixed":"1ad9166cab6a0f5c0b10344a97bdf749ae11dcbf"},{"fixed":"1e38f7a6cdd68377f8a4189b2fbaec14a6dd5152"},{"fixed":"a7e89541d05b98c79a51c0f95df020f8e82b62ed"},{"fixed":"797e5371cf55463b4530bab3fef5f27f7c6657a8"},{"fixed":"1927d0bcd5b81e80971bf6b8eba267508bd1c78b"},{"fixed":"3ba9cf69de50e8abed32b448616c313baa4c5712"},{"fixed":"9fe3839588db7519030377b7dee3f165e654f6c5"},{"fixed":"172a8a996a337206970467e871dd995ac07640b1"},{"fixed":"078aabd567de3d63d37d7673f714e309d369e6e2"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-22063.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}