5.5

CVE-2025-21758

ipv6: mcast: add RCU protection to mld_newpack()

In the Linux kernel, the following vulnerability has been resolved:

ipv6: mcast: add RCU protection to mld_newpack()

mld_newpack() can be called without RTNL or RCU being held.

Note that we no longer can use sock_alloc_send_skb() because
ipv6.igmp_sk uses GFP_KERNEL allocations which can sleep.

Instead use alloc_skb() and charge the net->ipv6.igmp_sk
socket under RCU protection.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 2.6.26 < 5.15.179
LinuxLinux Kernel Version >= 5.16 < 6.1.129
LinuxLinux Kernel Version >= 6.2 < 6.6.79
LinuxLinux Kernel Version >= 6.7 < 6.12.16
LinuxLinux Kernel Version >= 6.13 < 6.13.4
LinuxLinux Kernel Version6.14 Updaterc1
LinuxLinux Kernel Version6.14 Updaterc2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 13.04% 0.959
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/1b91c597b0214b1b462eb627ec02658c944623f2
Patch
https://git.kernel.org/stable/c/25195f9d5ffcc8079ad743a50c0409dbdc48d98a
Patch
https://git.kernel.org/stable/c/a527750d877fd334de87eef81f1cb5f0f0ca3373
Patch
https://git.kernel.org/stable/c/d60d493b0e65647e0335e6a7c4547abcea7df8e9
Patch
https://git.kernel.org/stable/c/e8af3632a7f2da83e27b083f787bced1faba00b1
Patch
https://git.kernel.org/stable/c/29fa42197f26a97cde29fa8c40beddf44ea5c8f3
Patch
https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html
https://cert-portal.siemens.com/productcert/html/ssa-082556.html