PT-2025-8793 · Linux+3 · Linux Kernel+3

Jon Maloy

Published

2025-01-27

Updated

2026-04-20

CVE-2025-21710

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A problem has been identified in the Linux kernel's handling of extreme memory squeeze situations, specifically in the way TCP handles window advertising. Under memory pressure, a socket endpoint may temporarily advertise a zero-sized window, but this is not stored as part of the socket data. As a result, the algorithm selecting a new value will consistently fail to advertise a non-zero window once enough memory has been freed, causing the peer to not send any data. This issue occurs on the server side and affects regular sockets with default settings.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120CWE-667

Related Identifiers

BDU:2025-11845

CVE-2025-21710

OESA-2025-1339

OESA-2025-1340

SUSE-SU-2025:4393-1

SUSE-SU-2025:4422-1

SUSE-SU-2025:4505-1

SUSE-SU-2025:4516-1

SUSE-SU-2025:4517-1

SUSE-SU-2025:4521-1

SUSE-SU-2026:20039-1

SUSE-SU-2026:20059-1

SUSE-SU-2026:20473-1

SUSE-SU-2026:20496-1

USN-7521-1

USN-7521-2

USN-7521-3

USN-7651-1

USN-7651-2

USN-7651-3

USN-7651-4

USN-7651-5

USN-7651-6

USN-7652-1

USN-7653-1

USN-7737-1

Affected Products

Astra Linux

Linuxmint

Linux Kernel

Ubuntu

PT-2025-8793 · Linux+3 · Linux Kernel+3

CVE-2025-21710

Weakness Enumeration

Related Identifiers

Affected Products

References · 573