Security Advisory

CVE-2025-21760

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-27 02:18:13

Last updated 2026-05-12 12:03:40

Assigner Linux

State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ndisc: extend RCU protection in ndisc_send_skb() ndisc_send_skb() can be called without RTNL or RCU held. Acquire rcu_read_lock() earlier, so that we can use dev_net_rcu() and avoid a potential UAF.

← Browse all CVEs View on cve.org ↗