Linux Kernel Vulnerability in GTP Network Device Management
CVE-2025-21865

5.5MEDIUM

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 12 March 2025

What is CVE-2025-21865?

A vulnerability has been identified in the Linux kernel's GTP (GPRS Tunneling Protocol) implementation, where improper handling during device destruction can lead to list corruption. This occurs in the gtp_net_exit_batch_rtnl() function, where a device may be de-linked twice under certain conditions. This could potentially allow an attacker to exploit the flaw during cleanup operations across different network namespaces, leading to unexpected behavior or application crashes. The issue has been addressed in later kernel updates to improve overall stability and security.

Affected Version(s)

Linux c986380c1d5274c4d5e935addc807d6791cc23eb < 7f86fb07db65a470d0c11f79da551bd9466357dc

Linux 5f1678346109ff3a6d229d33437fcba3cce9209d < 33eb925c0c26e86ca540a08254806512bf911f22

Linux 036f8d814a2cd11ee8ef62b8f3e7ce5dec0ee4f3

References

https://git.kernel.org/stable/c/7f86fb07db65a470d0c11f79d...

https://git.kernel.org/stable/c/33eb925c0c26e86ca540a0825...

https://git.kernel.org/stable/c/cb15bb1bde0ba97cbbed9508e...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 12, 2025
Vulnerability Reserved
Dec 29, 2024