CVE-2025-21669
Published: Jan 31, 2025
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: discard packets if the transport changes If the socket has been de-assigned or assigned to another transport, we must discard any packets received because they are not expected and would cause issues when we access vsk->transport. A possible scenario is described by Hyunwoo Kim in the attached link, where after a first connect() interrupted by a signal, and a second connect() failed, we can find `vsk->transport` at NULL, leading to a NULL pointer dereference.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected c0cfa2d8a788fcf45df5bf4070ab2474c88d543a - < 18a7fc371d1dbf8deff16c2dd9292bcc73f43040affected c0cfa2d8a788fcf45df5bf4070ab2474c88d543a - < 6486915fa661584d70e8e7e4068c6c075c67dd6daffected c0cfa2d8a788fcf45df5bf4070ab2474c88d543a - < 88244163bc7e7b0ce9dd7bf4c8a563b41525c3eeaffected c0cfa2d8a788fcf45df5bf4070ab2474c88d543a - < d88b249e14bd0ee1e46bbe4f456e22e01b8c68deaffected c0cfa2d8a788fcf45df5bf4070ab2474c88d543a - < 677579b641af109613564460a4e3bdcb16850b61+1 more versions |
Linux | Linux | affected 5.5unaffected 0 - < 5.5unaffected 5.10.234 - <= 5.10.*unaffected 5.15.177 - <= 5.15.*unaffected 6.1.127 - <= 6.1.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now