Linux Kernel Vulnerability in batman-adv Metric Worker Implementation
CVE-2025-21823

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
27 February 2025

What is CVE-2025-21823?

A vulnerability in the Linux kernel's batman-adv module has been identified, affecting the calculation of ELP metrics for network interfaces. This issue arises due to an improper handling of neighbor metrics that may lead to invalid memory access if not managed correctly. When attempting to cancel a metric worker, potential deadlocks can occur during the interface removal process, as certain locks held by the worker conflict with the deactivation procedure. The resolution involves redesigning the handling of metric updates to better align with RCU protected contexts, ensuring stability and reliability within the network management protocol.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux c833484e5f3872a38fe232c663586069d5ad9645 < 1c334629176c2d644befc31a20d4bf75542f7631

Linux c833484e5f3872a38fe232c663586069d5ad9645

Linux c833484e5f3872a38fe232c663586069d5ad9645 < 3c0e0aecb78cb2a2ca1dc701982d08fedb088dc6

References

https://git.kernel.org/stable/c/1c334629176c2d644befc31a2...
https://git.kernel.org/stable/c/a0019971f340ae02ba54cf186...
https://git.kernel.org/stable/c/3c0e0aecb78cb2a2ca1dc7019...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.