CVE-2025-37895
The CVE affects the Linux kernel BNXT Ethernet driver (bnxt_en). The root cause is in bnxt_init_chip() where a failure path triggers cancel_work_sync() on uninitialized dim work because BNXT_STATE_NAPI_DISABLED is not set during bnxt_open(). The fix sets BNXT_STATE_NAPI_DISABLED during initializa...