CVE-2025-21766

ipv4: use RCU protection in __ip_rt_update_pmtu()

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: ipv4: use RCU protection in __ip_rt_update_pmtu() __ip_rt_update_pmtu() must use RCU protection to make
sure the net structure it reads does not disappear.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2024-12-29 CVE Reserved
2025-02-27 CVE Published
2025-02-27 CVE Updated
---------- EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (10)

URL	Tag	Source
https://git.kernel.org/stable/c/2fbc6e89b2f1403189e624cabaf73e189c5e50c6	Vuln. Introduced
https://git.kernel.org/stable/c/f415c264176e6095e9dee823e09c5bdd0ee0d337	Vuln. Introduced
https://git.kernel.org/stable/c/98776a365da509ad923083ae54b38ee521c52742	Vuln. Introduced
https://git.kernel.org/stable/c/860e2cc78c697c95bc749abb20047239fa1722ea	Vuln. Introduced
https://git.kernel.org/stable/c/2b1be6c925cdf4638811765a9160796291494b89	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/ea07480b23225942208f1b754fea1e7ec486d37e	2025-02-21
https://git.kernel.org/stable/c/9b1766d1ff5fe496aabe9fc5f4e34e53f35c11c4	2025-02-21
https://git.kernel.org/stable/c/4583748b65dee4d61bd50a2214715b4237bc152a	2025-02-21
https://git.kernel.org/stable/c/a39f61d212d822b3062d7f70fa0588e50e55664e	2025-02-21
https://git.kernel.org/stable/c/139512191bd06f1b496117c76372b2ce372c9a41	2025-02-07

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.9 < 6.1.129 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.9 < 6.1.129"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.9 < 6.6.79 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.9 < 6.6.79"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.9 < 6.12.16 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.9 < 6.12.16"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.9 < 6.13.4 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.9 < 6.13.4"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.9 < 6.14-rc3 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.9 < 6.14-rc3"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.14.200 Search vendor "Linux" for product "Linux Kernel" and version "4.14.200"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				4.19.148 Search vendor "Linux" for product "Linux Kernel" and version "4.19.148"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				5.4.68 Search vendor "Linux" for product "Linux Kernel" and version "5.4.68"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				5.8.12 Search vendor "Linux" for product "Linux Kernel" and version "5.8.12"		en		Affected