CVE-2025-21711

MEDIUM EPSS 11.0%
Published Feb 27, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 27, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: net/rose: prevent integer overflows in rose_setsockopt() In case of possible unpredictably large arguments passed to rose_setsockopt() and multiplied by extra values on top of that, integer overflows may occur. Do the safest minimum and fix these issues by checking the contents of 'opt' and returning -EINVAL if they are too large. Also, switch to unsigned int and remove useless check for negative 'opt' in ROSE_IDLE case.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
11.0% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-190 Integer Overflow or Wraparound Numeric Error

Affected Products 4

VendorProductVersionRange
linuxlinux_kernel*≥2.6.12  –  <6.1.129
linuxlinux_kernel*≥6.2  –  <6.6.76
linuxlinux_kernel*≥6.7  –  <6.12.13
linuxlinux_kernel*≥6.13  –  <6.13.2

References 10

  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-265688.html
  • git.kernel.org https://git.kernel.org/stable/c/352daa50946c3bbb662432e8daf54d6760796589
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4bdd449977e2364a53d0b2a5427e71beb1cd702d
  • git.kernel.org https://git.kernel.org/stable/c/9bdee49ad6bbd26ab5e13cc6731e54fb1b6c1dca
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b8583b54455cbec2fc038fa32b6700890b369815
  • git.kernel.org https://git.kernel.org/stable/c/d08f4074f9c69f7e95502587eb1b258a965ba7f0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d640627663bfe7d8963c7615316d7d4ef60f3b0b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e5338930a29d0ab2a5af402f5f664aeba0d1a676
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/352daa50946c3bbb662432e8daf54d6760796589
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9bdee49ad6bbd26ab5e13cc6731e54fb1b6c1dca
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d08f4074f9c69f7e95502587eb1b258a965ba7f0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d640627663bfe7d8963c7615316d7d4ef60f3b0b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e5338930a29d0ab2a5af402f5f664aeba0d1a676
    Patch