PT-2025-13223 · Linux+2 · Linux Kernel+2

Published

2025-02-20

·

Updated

2025-06-16

·

CVE-2025-21886

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0-rc7+
Description A vulnerability in the Linux kernel has been resolved, specifically in the RDMA/mlx5 component. The issue was related to an implicit ODP hang on parent deregistration. The problem occurred because the reference count for the implicit MR parent was not properly managed, leading to a potential hang during parent deregistration. The code has been updated to properly manage the reference count.
Recommendations For Linux kernel versions prior to 6.12.0-rc7+, update to a newer version to resolve the issue. As a temporary workaround, consider disabling the destroy unused implicit child mr() function until a patch is available. Restrict access to the ib uverbs module to minimize the risk of exploitation. Avoid using the ib dereg mr user function in the affected API endpoint until the issue is resolved.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-99

Related Identifiers

BDU:2025-12315
CVE-2025-21886
OPENSUSE-SU-2025_01627-1
OPENSUSE-SU-2025_1177-1
OPENSUSE-SU-2025_1178-1
OPENSUSE-SU-2025_1180-1
SUSE-SU-2025:01627-1
SUSE-SU-2025:01919-1
SUSE-SU-2025:01951-1
SUSE-SU-2025:01967-1
SUSE-SU-2025:1177-1
SUSE-SU-2025:1178-1
SUSE-SU-2025:1180-1
SUSE-SU-2025:1573-1
SUSE-SU-2025:20190-1
SUSE-SU-2025:20192-1
SUSE-SU-2025:20260-1
SUSE-SU-2025:20270-1
SUSE-SU-2025_01627-1
SUSE-SU-2025_01951-1
SUSE-SU-2025_01967-1
SUSE-SU-2025_1177-1
SUSE-SU-2025_1178-1
SUSE-SU-2025_1180-1

Affected Products

Astra Linux
Linux Kernel
Suse