CVE-2025-68221

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s MPTCP implementation related to address removal logic within the mptcp pm nl rm addr function. The issue stems from an inverted condition in a WARN ON ONCE statement, which prevented correct updates to the address removal counter. Specifically, the decrement logic was only executed when the counter was already zero, an abnormal state, while normal removals were ignored.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.