PT-2025-8867 · Linux+1 · Linux Kernel+1

Syzbot

Published

2025-02-27

Updated

2025-09-27

CVE-2025-21755

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been identified, related to the vsock protocol. During socket release, the sock orphan() function is called without considering that it sets sk->sk wq to NULL. Later, if SO LINGER is enabled, this leads to a null pointer dereference in virtio transport wait close(). The issue arises because the socket is orphaned before transport release. The problem is partially reverted by a 'Fixes:' commit. A null pointer dereference in the range [0x0000000000000018-0x000000000000001f] has been detected by KASAN.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ASB-A-396331793

CVE-2025-21755

OPENSUSE-SU-2025_01614-1

OPENSUSE-SU-2025_01707-1

SUSE-SU-2025:01614-1

SUSE-SU-2025:01707-1

SUSE-SU-2025:01919-1

SUSE-SU-2025:01951-1

SUSE-SU-2025:01964-1

SUSE-SU-2025:01967-1

SUSE-SU-2025:03370-1

SUSE-SU-2025:03374-1

SUSE-SU-2025:03375-1

SUSE-SU-2025:03381-1

SUSE-SU-2025:03387-1

SUSE-SU-2025:03391-1

SUSE-SU-2025:03393-1

SUSE-SU-2025:03395-1

SUSE-SU-2025:03397-1

SUSE-SU-2025:03400-1

SUSE-SU-2025:20192-1

SUSE-SU-2025:20206-1

SUSE-SU-2025:20270-1

SUSE-SU-2025:20283-1

SUSE-SU-2025_01614-1

SUSE-SU-2025_01707-1

SUSE-SU-2025_01951-1

SUSE-SU-2025_01964-1

SUSE-SU-2025_01967-1

Affected Products

Linux Kernel

Suse

PT-2025-8867 · Linux+1 · Linux Kernel+1

CVE-2025-21755

Weakness Enumeration

Related Identifiers

Affected Products

References · 1547