Linux Kernel Vulnerability in IPv6 Packet Processing
CVE-2025-21765

Currently unrated

Key Information:

Vendor
Linux
Status
Linux
Vendor
CVE Published:
27 February 2025

Summary

A vulnerability exists in the Linux kernel's handling of IPv6 packet processing. The function ip6_default_advmss() lacks proper Read-Copy-Update (RCU) protection, which increases the risk of dereferencing a pointer to a potentially deallocated network structure. This oversight can lead to unexpected behaviors or system crashes, posing a significant risk to system integrity and performance.

Affected Version(s)

Linux 5578689a4e3c04f2d43ea39736fd3fa396d80c6e < 84212387caadb211cd9dadd6fd5563bd37dc1f5e

Linux 5578689a4e3c04f2d43ea39736fd3fa396d80c6e < 4176a68b0db8fc74ac14fcd00ba8231371051dc2

Linux 5578689a4e3c04f2d43ea39736fd3fa396d80c6e < 713a40c892f40300d63691d9f85b2a23b48fe1e8

References

https://git.kernel.org/stable/c/84212387caadb211cd9dadd6f...
https://git.kernel.org/stable/c/4176a68b0db8fc74ac14fcd00...
https://git.kernel.org/stable/c/713a40c892f40300d63691d9f...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.