CVE-2025-21637
Published: Jan 19, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: udp_port: avoid using current->nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the reader's/writer's netns vs only from the opener's netns. - current->nsproxy can be NULL in some cases, resulting in an 'Oops' (null-ptr-deref), e.g. when the current task is exiting, as spotted by syzbot [1] using acct(2). The 'net' structure can be obtained from the table->data using container_of(). Note that table->data could also be used directly, but that would increase the size of this fix, while 'sctp.ctl_sock' still needs to be retrieved from 'net' structure.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 046c052b475e7119b6a30e3483e2888fc606a2f8 - < 0a0966312ac3eedd7f5f2a766ed4702df39a9a65affected 046c052b475e7119b6a30e3483e2888fc606a2f8 - < e919197fb8616331f5dc81e4c3cc3d12769cb725affected 046c052b475e7119b6a30e3483e2888fc606a2f8 - < 55627918febdf9d71107a1e68d1528dc591c9a15affected 046c052b475e7119b6a30e3483e2888fc606a2f8 - < 5b77d73f3be5102720fb685b9e6900e3500e1096affected 046c052b475e7119b6a30e3483e2888fc606a2f8 - < c10377bbc1972d858eaf0ab366a311b39f8ef1b6 |
Linux | Linux | affected 5.11unaffected 0 - < 5.11unaffected 5.15.177 - <= 5.15.*unaffected 6.1.125 - <= 6.1.*unaffected 6.6.72 - <= 6.6.*+2 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now