CVE-2025-22107: 
Linux Kernel vulnerability analysis and mitigation

A vulnerability in the Linux kernel's net/dsa/sja1105 component was discovered and assigned CVE-2025-22107. The issue involves an out-of-bounds warning in the sja1105tabledelete_entry() function, which was identified on April 16, 2025. The vulnerability affects various Linux kernel versions, including those used in Debian distributions such as Bullseye, Bookworm, and Trixie (Debian Tracker).

The vulnerability consists of two specific problems in the sja1105tabledelete_entry() function: First, when deleting the last element, the code unnecessarily attempts to move elements beyond the bounds of the array. Second, the memmove operation calculates incorrect element counts, potentially accessing out-of-bounds memory. The vulnerability has been assigned a CVSS v3.1 base score of 5.5 with vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H, indicating a moderate severity level (Red Hat CVE).

While the out-of-bounds element remains out of bounds after being accessed, the primary concern is that it could lead to system stability issues if the out-of-bounds element is part of an unmapped page. The vulnerability primarily affects system availability, as indicated by the CVSS scoring which shows high impact on availability but no impact on confidentiality or integrity (Red Hat CVE).

The vulnerability has been resolved in the Linux kernel through patches. The fix addresses both issues by correcting the memmove operation calculations and removing unnecessary element movements. The solution is documented in the kernel commit history (NVD).