Network Performance Vulnerability in Linux Kernel by Linux Foundation
CVE-2025-21806

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 27 February 2025

Summary

A vulnerability in the Linux kernel's network stack arises when the NAPI (New API) weight is set to zero, leading to erroneous behavior during packet handling. Specifically, the process_backlog function may incorrectly indicate that it has managed packets, resulting in the potential for infinite loops, resource exhaustion, and system instability. This issue necessitates root-level access to exploit, allowing an attacker to interfere with packet processing and potentially degrade system performance. A fix has been implemented to ensure that the NAPI weight remains non-zero, resolving the observed problems.

Affected Version(s)

Linux e3876605450979fe52a1a03e7eb78a89bf59e76a < 5860abbf15eeb61838b5e32e721ba67b0aa84450

Linux e3876605450979fe52a1a03e7eb78a89bf59e76a < 6ce38b5a6a49e65bad163162a54cb3f104c40b48

Linux e3876605450979fe52a1a03e7eb78a89bf59e76a < 33e2168788f8fb5cb8bd4f36cb1ef37d1d34dada

References

https://git.kernel.org/stable/c/5860abbf15eeb61838b5e32e7...

https://git.kernel.org/stable/c/6ce38b5a6a49e65bad163162a...

https://git.kernel.org/stable/c/33e2168788f8fb5cb8bd4f36c...

Timeline

Vulnerability published
Feb 27, 2025
Vulnerability Reserved
Dec 29, 2024