PT-2025-14290 · Linux+6 · Linux Kernel+6
Published
2025-01-31
·
Updated
2026-04-20
·
CVE-2025-21909
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
A vulnerability in the Linux kernel has been resolved, related to the wifi and nl80211 components. The issue arises when both MONITOR FLAG COOK FRAMES and MONITOR FLAG ACTIVE flags are set simultaneously on the same monitor interface from userspace, causing a sub-interface to be created without the IEEE80211 SDATA IN DRIVER bit set. This leads to a warning when the interface is deleted. The problem was discovered by the Linux Verification Center with Syzkaller.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
RCE
Race Condition
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu