PT-2025-18399 · Linux+6 · Linux Kernel+6

Published

2025-03-31

·

Updated

2026-06-05

·

CVE-2025-23145

CVSS v2.0

7.8

High

VectorAV:N/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A vulnerability has been resolved in the Linux kernel related to the MPTCP protocol. The issue occurs when the kernel panics in 'mptcp can accept new subflow' due to a NULL pointer dereference. This happens when the same request receives two SYN-ACK packets in a short time, potentially caused by client retransmission. The problem arises from concurrent processing of packets on different CPUs, leading to a risk of null pointer dereference. The patch fixes this issue by moving the 'subflow req->msk' under the own req == true conditional.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

BDU:2025-12166
CVE-2025-23145
DLA-4178-1
DLA-4193-1
ECHO-9290-349A-DBA9
OESA-2026-2581
OPENSUSE-SU-2025_01614-1
OPENSUSE-SU-2025_01707-1
SUSE-SU-2025:01614-1
SUSE-SU-2025:01707-1
SUSE-SU-2025:01918-1
SUSE-SU-2025:01919-1
SUSE-SU-2025:01951-1
SUSE-SU-2025:01964-1
SUSE-SU-2025:01966-1
SUSE-SU-2025:01967-1
SUSE-SU-2025:01972-1
SUSE-SU-2025:02173-1
SUSE-SU-2025:02262-1
SUSE-SU-2025:02264-1
SUSE-SU-2025:02321-1
SUSE-SU-2025:02322-1
SUSE-SU-2025:02537-1
SUSE-SU-2025:20343-1
SUSE-SU-2025:20344-1
SUSE-SU-2025:20354-1
SUSE-SU-2025:20355-1
SUSE-SU-2025:21085-1
SUSE-SU-2025:21086-1
SUSE-SU-2025:21087-1
SUSE-SU-2025:21088-1
SUSE-SU-2025:21089-1
SUSE-SU-2025:21092-1
SUSE-SU-2025:21093-1
SUSE-SU-2025:21094-1
SUSE-SU-2025:21095-1
SUSE-SU-2025:21107-1
SUSE-SU-2025:21108-1
SUSE-SU-2025:21109-1
SUSE-SU-2025:21116-1
SUSE-SU-2025:21117-1
SUSE-SU-2025:21118-1
SUSE-SU-2025:21119-1
SUSE-SU-2025:2173-1
SUSE-SU-2025:2264-1
SUSE-SU-2025:4160-1
SUSE-SU-2025:4161-1
SUSE-SU-2025:4167-1
SUSE-SU-2025:4199-1
SUSE-SU-2025:4200-1
SUSE-SU-2025:4215-1
SUSE-SU-2025:4227-1
SUSE-SU-2025:4230-1
SUSE-SU-2025:4239-1
SUSE-SU-2025:4243-1
SUSE-SU-2025:4255-1
SUSE-SU-2025:4261-1
SUSE-SU-2025:4262-1
SUSE-SU-2025:4265-1
SUSE-SU-2025:4283-1
SUSE-SU-2025:4302-1
SUSE-SU-2025_01614-1
SUSE-SU-2025_01707-1
SUSE-SU-2025_01951-1
SUSE-SU-2025_01964-1
SUSE-SU-2025_01967-1
SUSE-SU-2025_01972-1
SUSE-SU-2025_02173-1
SUSE-SU-2025_02262-1
SUSE-SU-2025_02264-1
SUSE-SU-2025_02537-1
USN-7594-1
USN-7594-2
USN-7594-3
USN-7654-1
USN-7654-2
USN-7654-3
USN-7654-4
USN-7654-5
USN-7655-1
USN-7686-1
USN-7711-1
USN-7712-1
USN-7712-2
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu