CVE-2025-21765

MEDIUM EPSS 10.2%
Published Feb 27, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 27, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ipv6: use RCU protection in ip6_default_advmss() ip6_default_advmss() needs rcu protection to make sure the net structure it reads does not disappear.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
10.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 9

VendorProductVersionRange
linuxlinux_kernel*≥2.6.26  –  <5.4.291
linuxlinux_kernel*≥5.5  –  <5.10.235
linuxlinux_kernel*≥5.11  –  <5.15.179
linuxlinux_kernel*≥5.16  –  <6.1.129
linuxlinux_kernel*≥6.2  –  <6.6.79
linuxlinux_kernel*≥6.7  –  <6.12.16
linuxlinux_kernel*≥6.13  –  <6.13.4
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any

References 12

  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-082556.html
  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-265688.html
  • git.kernel.org https://git.kernel.org/stable/c/28de355b63ad42309ed5a03ee7c436c90512265b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3c8ffcd248da34fc41e52a46e51505900115fc2a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4176a68b0db8fc74ac14fcd00ba8231371051dc2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/550ed693f47370502a71b85382e7f9e6417300b8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/713a40c892f40300d63691d9f85b2a23b48fe1e8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/78ad057472d8c76e0602402269222f9f9c698790
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/84212387caadb211cd9dadd6fd5563bd37dc1f5e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d02f30d220ef9511568a48dba8a9004c65f8d904
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/28de355b63ad42309ed5a03ee7c436c90512265b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3c8ffcd248da34fc41e52a46e51505900115fc2a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4176a68b0db8fc74ac14fcd00ba8231371051dc2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/550ed693f47370502a71b85382e7f9e6417300b8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/713a40c892f40300d63691d9f85b2a23b48fe1e8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/78ad057472d8c76e0602402269222f9f9c698790
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/84212387caadb211cd9dadd6fd5563bd37dc1f5e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d02f30d220ef9511568a48dba8a9004c65f8d904
    Patch