Back to search
CVE-2025-21760
Published: Feb 27, 2025
Modified: May 12, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: ndisc: extend RCU protection in ndisc_send_skb() ndisc_send_skb() can be called without RTNL or RCU held. Acquire rcu_read_lock() earlier, so that we can use dev_net_rcu() and avoid a potential UAF.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1762f7e88eb34f653b4a915be99a102e347dd45e - < 10a1f3fece2f0d23a3a618b72b2b4e6f408ef7d1affected 1762f7e88eb34f653b4a915be99a102e347dd45e - < 4d576202b90b1b95a7c428a80b536f91b8201bccaffected 1762f7e88eb34f653b4a915be99a102e347dd45e - < e24d225e4cb8cf108bde00b76594499b98f0a74daffected 1762f7e88eb34f653b4a915be99a102e347dd45e - < a9319d800b5701e7f5e3fa71a5b7c4831fc20d6daffected 1762f7e88eb34f653b4a915be99a102e347dd45e - < ae38982f521621c216fc2f5182cd091f4734641d+3 more versions |
Linux | Linux | affected 2.6.26unaffected 0 - < 2.6.26unaffected 5.4.291 - <= 5.4.*unaffected 5.10.235 - <= 5.10.*unaffected 5.15.179 - <= 5.15.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now