CVE-2025-22058

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory accounting leak issue has been identified in the Linux kernel, specifically related to UDP memory usage. The problem occurs when the application sets INT MAX to SO RCVBUF, triggering an integer overflow in udp rmem release(). This causes the total size of the receive queue to wrap around, resulting in an overflow. As a consequence, the released amount is miscalculated, leading to a doubling of the UDP memory usage. This issue can cause further memory allocation to fail, resulting in packet drops.

Recommendations To prevent this issue, it is recommended to use unsigned int for the calculation and call sk forward alloc add() only once for the small delta. Additionally, consider reviewing the first packet length() function for potential similar problems. At the moment, there is no information about a newer version that contains a fix for this vulnerability.