PT-2025-11014 · Linux+5 · Linux Kernel+5

Yan Zhai

Published

2025-01-31

Updated

2025-06-17

CVE-2025-21852

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: A vulnerability in the Linux kernel has been resolved. The issue was reported by Yan Zhai, where a BPF program could trigger a null pointer dereference in trace kfree skb if the program does not check if rx sk is NULL. This occurred because rx sk is optional and could be NULL. The fix involves adding kfree skb to raw tp null args[] to let the BPF verifier validate such programs and prevent the issue.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALT-PU-2025-4807

BDU:2025-12188

CVE-2025-21852

OPENSUSE-SU-2025_01614-1

OPENSUSE-SU-2025_01707-1

SUSE-SU-2025:01614-1

SUSE-SU-2025:01707-1

SUSE-SU-2025:01919-1

SUSE-SU-2025:01951-1

SUSE-SU-2025:01964-1

SUSE-SU-2025:01967-1

SUSE-SU-2025:01972-1

SUSE-SU-2025:20343-1

SUSE-SU-2025:20344-1

SUSE-SU-2025:20354-1

SUSE-SU-2025:20355-1

SUSE-SU-2025_01614-1

SUSE-SU-2025_01707-1

SUSE-SU-2025_01951-1

SUSE-SU-2025_01964-1

SUSE-SU-2025_01967-1

SUSE-SU-2025_01972-1

USN-7521-1

USN-7521-2

USN-7521-3

Affected Products

Alt Linux

Astra Linux

Linuxmint

Linux Kernel

Suse

Ubuntu

PT-2025-11014 · Linux+5 · Linux Kernel+5

CVE-2025-21852

Weakness Enumeration

Related Identifiers

Affected Products

References · 1584