PT-2025-11027 · Linux+7 · Linux Kernel+7
Brad Spengler
·
Published
2025-02-20
·
Updated
2026-03-14
·
CVE-2025-21865
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
A vulnerability in the Linux kernel has been resolved, related to the gtp net exit batch rtnl() function. The issue was reported by Brad Spengler and is caused by the potential for list del() corruption splat in gtp net exit batch rtnl(). This can occur when the for each netdev() loop in gtp net exit batch rtnl() destroys devices in each netns, leading to ->dellink() being called twice for the same device during ->exit batch rtnl().
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu