Security Advisory

CVE-2025-21758

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-27 02:18:12

Last updated 2026-05-12 12:03:39

Assigner Linux

State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: add RCU protection to mld_newpack() mld_newpack() can be called without RTNL or RCU being held. Note that we no longer can use sock_alloc_send_skb() because ipv6.igmp_sk uses GFP_KERNEL allocations which can sleep. Instead use alloc_skb() and charge the net->ipv6.igmp_sk socket under RCU protection.

← Browse all CVEs View on cve.org ↗