IPv6 Vulnerability in Linux Kernel Affecting Networking Components
CVE-2025-21757

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
27 February 2025

What is CVE-2025-21757?

A vulnerability in the Linux kernel's IPv6 implementation affects the handling of destination cache references. Specifically, in scenarios involving RPL (Routing Protocol for Low-Power and Lossy Networks), Segment Routing Header (SRH), and Inband OAM over IPv6 (IOAM6) lightweight tunneling, the dst_cache_get() function fails to properly release memory references, leading to potential memory leaks. This issue was identified through the ioam6.sh test, which helped in the recent enhancement of kmemleak to detect per-CPU memory issues. Proper management of references is essential to maintain system stability and security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux b26f015dfb07b6be12d005a0ed0c5c43b7bedbf3

Linux 634710a372ba65bee667c2f6e58a97658c639eab

Linux 8471e228448a818e4c27cab4b681b2e758e46cf5 < 2248b8145053eb2ae35ca4cf694b885a086719bb

References

https://git.kernel.org/stable/c/cb9950eaaf9cc76dfe490c06a...
https://git.kernel.org/stable/c/bf500b0d0cfe92ee62dfd4c2a...
https://git.kernel.org/stable/c/2248b8145053eb2ae35ca4cf6...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.