Vulnerabilities

CVE-2025-21761

by Fred · 27/02/2025

In the Linux kernel, the following vulnerability has been resolved:

openvswitch: use RCU protection in ovs_vport_cmd_fill_info()

ovs_vport_cmd_fill_info() can be called without RTNL or RCU.

Use RCU protection and dev_net_rcu() to avoid potential UAF.

More information : https://git.kernel.org/stable/c/5828937742af74666192835d657095d95c53dbd0

Similar

Tags: Cybersecurity Alert