Race Condition in Linux Kernel Network Device Operations
CVE-2025-21701

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 13 February 2025

Summary

A vulnerability in the Linux kernel manifests as a race condition between the unregistration of network devices and ongoing ethnl operations. When a device is being unregistered, simultaneous modifications to its number of channels can produce warnings and lock issues, leading to potential instability. This vulnerability emphasizes the importance of synchronization in network operations to prevent device failure or unexpected behaviors.

Affected Version(s)

Linux cfd719f04267108f5f5bf802b9d7de69e99a99f9 < 26bc6076798aa4dc83a07d0a386f9e57c94e8517

Linux dde91ccfa25fd58f64c397d91b81a4b393100ffa

Linux dde91ccfa25fd58f64c397d91b81a4b393100ffa < 2f29127e94ae9fdc7497331003d6860e9551cdf3

References

https://git.kernel.org/stable/c/26bc6076798aa4dc83a07d0a3...

https://git.kernel.org/stable/c/b1cb37a31a482df3dd35a6ac1...

https://git.kernel.org/stable/c/2f29127e94ae9fdc749733100...

Timeline

Vulnerability published
Feb 13, 2025
Vulnerability Reserved
Dec 29, 2024