PT-2025-16696 · Linux+10 · Linux Kernel+10

Published

2025-04-16

·

Updated

2026-04-20

·

CVE-2025-22056

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A vulnerability in the Linux kernel's netfilter component, specifically in the nft tunnel module, has been resolved. The issue arises from incorrect pointer addition and type conversion when handling multiple NFTA TUNNEL KEY OPTS GENEVE attributes, leading to a heap out-of-bounds write. This can cause a slab-out-of-bounds error, as reported by the KASAN (Kernel Address Sanitizer).
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

ALSA-2025:20095
ALSA-2025:20518
ALT-PU-2025-12647
ALT-PU-2025-5437
ALT-PU-2025-6382
ALT-PU-2025-6606
ALT-PU-2025-7195
AZL-61463
BDU:2025-08099
CVE-2025-22056
DLA-4178-1
DLA-4193-1
DSA-5907-1
ECHO-A606-1CAD-61A6
INFSA-2025_20518
MGASA-2025-0142
MGASA-2025-0146
OESA-2025-2118
OESA-2025-2119
OESA-2025-2120
OESA-2025-2121
OESA-2025-2122
RHSA-2025:20095
RHSA-2025:20518
RHSA-2025_20518
RHSA-2026:4011
SUSE-SU-2025:01918-1
SUSE-SU-2025:01919-1
SUSE-SU-2025:01951-1
SUSE-SU-2025:01964-1
SUSE-SU-2025:01965-1
SUSE-SU-2025:01966-1
SUSE-SU-2025:01967-1
SUSE-SU-2025:01972-1
SUSE-SU-2025:02000-1
SUSE-SU-2025:02173-1
SUSE-SU-2025:02262-1
SUSE-SU-2025:20408-1
SUSE-SU-2025:20413-1
SUSE-SU-2025:20419-1
SUSE-SU-2025:20421-1
SUSE-SU-2025:2173-1
SUSE-SU-2025_01951-1
SUSE-SU-2025_01964-1
SUSE-SU-2025_01965-1
SUSE-SU-2025_01967-1
SUSE-SU-2025_01972-1
SUSE-SU-2025_02000-1
SUSE-SU-2025_02173-1
SUSE-SU-2025_02262-1
USN-7591-1
USN-7591-2
USN-7591-3
USN-7591-4
USN-7591-5
USN-7591-6
USN-7592-1
USN-7593-1
USN-7594-1
USN-7594-2
USN-7594-3
USN-7597-1
USN-7597-2
USN-7598-1
USN-7602-1
USN-7605-1
USN-7605-2
USN-7606-1
USN-7628-1
USN-7655-1
USN-7835-1
USN-7835-2
USN-7835-3
USN-7835-4
USN-7835-5
USN-7835-6
USN-7887-1
USN-7887-2
USN-7940-1
USN-7940-2

Affected Products

Alt Linux
Almalinux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu