Use-After-Free Vulnerability in Geneve Protocol of Linux Kernel
CVE-2025-21858

7.8HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 12 March 2025

Summary

A vulnerability in the Geneve protocol implementation within the Linux kernel can lead to a use-after-free condition. This occurs in the geneve_find_dev() function when proper memory management is not executed following the dismantling of a network device. Specifically, if a network namespace is terminated, it may still reference a previously freed geneve_dev structure, potentially allowing unintended access to memory. Consequently, if a new Geneve device is created in the same namespace shortly after, it could interact with an invalid memory state, leading to undefined behavior and potential system instability. This vulnerability underscores the importance of robust memory management practices in networking protocols.

Affected Version(s)

Linux 2d07dc79fe04a43d82a346ced6bbf07bdb523f1b

Linux 2d07dc79fe04a43d82a346ced6bbf07bdb523f1b < 5a0538ac6826807d6919f6aecbb8996c2865af2c

Linux 2d07dc79fe04a43d82a346ced6bbf07bdb523f1b

References

https://git.kernel.org/stable/c/d5e86e27de0936f3cb0a299ce...

https://git.kernel.org/stable/c/5a0538ac6826807d6919f6aec...

https://git.kernel.org/stable/c/f74f6560146714241c6e167b0...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 12, 2025
Vulnerability Reserved
Dec 29, 2024