PT-2025-13223 · Linux+2 · Linux Kernel+2

Publicado

2025-02-20

·

Atualizado

2025-06-16

·

CVE-2025-21886

CVSS v3.1

5.5

Média

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0-rc7+
Description A vulnerability in the Linux kernel has been resolved, specifically in the RDMA/mlx5 component. The issue was related to an implicit ODP hang on parent deregistration. The problem occurred because the reference count for the implicit MR parent was not properly managed, leading to a potential hang during parent deregistration. The code has been updated to properly manage the reference count.
Recommendations For Linux kernel versions prior to 6.12.0-rc7+, update to a newer version to resolve the issue. As a temporary workaround, consider disabling the destroy unused implicit child mr() function until a patch is available. Restrict access to the ib uverbs module to minimize the risk of exploitation. Avoid using the ib dereg mr user function in the affected API endpoint until the issue is resolved.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-99

Identificadores relacionados

BDU:2025-12315
CVE-2025-21886
OPENSUSE-SU-2025_01627-1
OPENSUSE-SU-2025_1177-1
OPENSUSE-SU-2025_1178-1
OPENSUSE-SU-2025_1180-1
SUSE-SU-2025:01627-1
SUSE-SU-2025:01919-1
SUSE-SU-2025:01951-1
SUSE-SU-2025:01967-1
SUSE-SU-2025:1177-1
SUSE-SU-2025:1178-1
SUSE-SU-2025:1180-1
SUSE-SU-2025:1573-1
SUSE-SU-2025:20190-1
SUSE-SU-2025:20192-1
SUSE-SU-2025:20260-1
SUSE-SU-2025:20270-1
SUSE-SU-2025_01627-1
SUSE-SU-2025_01951-1
SUSE-SU-2025_01967-1
SUSE-SU-2025_1177-1
SUSE-SU-2025_1178-1
SUSE-SU-2025_1180-1

Produtos afetados

Astra Linux
Linux Kernel
Suse