PT-2025-8790 · Linux+7 · Linux Kernel+7
Syzbot
·
Published
2025-01-23
·
Updated
2026-04-20
·
CVE-2025-21707
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
A vulnerability has been identified in the Linux kernel related to the MultiPath TCP (MPTCP) protocol. The issue arises from the way MPTCP maintains the status of received sub-options, which can lead to inconsistent status and potentially cause problems. The vulnerability was discovered by syzbot, which triggered a path where a relevant bitfield is not cleared or initialized, resulting in an uninit-value bug. This bug can occur in various functions, including
mptcp expand seq, mptcp expand seq, ack update msk, and mptcp incoming options. The vulnerability can be exploited through the tcp data queue and tcp rcv established functions.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Use of Uninitialized Resource
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu