SCTP Vulnerability in Linux Kernel Affecting Google Cloud Services
CVE-2025-22062

5.5MEDIUM

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 April 2025

What is CVE-2025-22062?

A vulnerability in the Linux kernel related to SCTP (Stream Control Transmission Protocol) has been identified, which occurs due to missing mutual exclusion in the processing of UDP port functions. This issue can lead to potential crashes when improperly handling socket operations, as indicated by errors produced under various conditions, including null pointer dereferences. This vulnerability poses a risk to systems utilizing the Linux kernel, particularly impacting Google Cloud services. It is crucial for administrators to apply the latest patches to maintain system stability and security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 046c052b475e7119b6a30e3483e2888fc606a2f8 < 65ccb2793da7401772a3ffe85355c831b313c59f

Linux 046c052b475e7119b6a30e3483e2888fc606a2f8 < 386507cb6fb7cdef598ddcb3f0fa37e6ca9e789d

Linux 046c052b475e7119b6a30e3483e2888fc606a2f8

References

https://git.kernel.org/stable/c/65ccb2793da7401772a3ffe85...

https://git.kernel.org/stable/c/386507cb6fb7cdef598ddcb3f...

https://git.kernel.org/stable/c/b3598f53211ba1025485306de...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 16, 2025

JSON

Linux

What is CVE-2025-22062?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.