CVE-2025-22005

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak issue has been identified in the Linux kernel, specifically in the fib check nh v6 gw() function. The fib6 nh init() function is expected to clean up everything when it fails, but a commit moved fib nh common init() before alloc percpu gfp() within fib6 nh init() and forgot to add cleanup for fib6 nh->nh common.nhc pcpu rth output in case it fails to allocate fib6 nh->rt6i pcpu, resulting in a memory leak. The issue is resolved by calling fib nh common release() and clearing nhc pcpu rth output in the error path.

Recommendations To resolve the issue, apply the patch that includes the commit 7dd73168e273, which fixes the memory leak by adding the necessary cleanup in the error path. At the moment, there is no information about a newer version that contains a fix for this vulnerability.