๐Ÿ” CVE Alert

CVE-2025-21669

MEDIUM 5.5

vsock/virtio: discard packets if the transport changes

CVSS Score
5.5
EPSS Score
0.0%
EPSS Percentile
0th

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: discard packets if the transport changes If the socket has been de-assigned or assigned to another transport, we must discard any packets received because they are not expected and would cause issues when we access vsk->transport. A possible scenario is described by Hyunwoo Kim in the attached link, where after a first connect() interrupted by a signal, and a second connect() failed, we can find `vsk->transport` at NULL, leading to a NULL pointer dereference.

Vendor linux
Product linux
Ecosystems
Industries
Technology
Published Jan 31, 2025
Last Updated May 12, 2026
Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new medium vulnerabilities affecting linux linux are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Linux / Linux
c0cfa2d8a788fcf45df5bf4070ab2474c88d543a < 18a7fc371d1dbf8deff16c2dd9292bcc73f43040 c0cfa2d8a788fcf45df5bf4070ab2474c88d543a < 6486915fa661584d70e8e7e4068c6c075c67dd6d c0cfa2d8a788fcf45df5bf4070ab2474c88d543a < 88244163bc7e7b0ce9dd7bf4c8a563b41525c3ee c0cfa2d8a788fcf45df5bf4070ab2474c88d543a < d88b249e14bd0ee1e46bbe4f456e22e01b8c68de c0cfa2d8a788fcf45df5bf4070ab2474c88d543a < 677579b641af109613564460a4e3bdcb16850b61 c0cfa2d8a788fcf45df5bf4070ab2474c88d543a < 2cb7c756f605ec02ffe562fb26828e4bcc5fdfc1
Linux / Linux
5.5

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
git.kernel.org: https://git.kernel.org/stable/c/18a7fc371d1dbf8deff16c2dd9292bcc73f43040 git.kernel.org: https://git.kernel.org/stable/c/6486915fa661584d70e8e7e4068c6c075c67dd6d git.kernel.org: https://git.kernel.org/stable/c/88244163bc7e7b0ce9dd7bf4c8a563b41525c3ee git.kernel.org: https://git.kernel.org/stable/c/d88b249e14bd0ee1e46bbe4f456e22e01b8c68de git.kernel.org: https://git.kernel.org/stable/c/677579b641af109613564460a4e3bdcb16850b61 git.kernel.org: https://git.kernel.org/stable/c/2cb7c756f605ec02ffe562fb26828e4bcc5fdfc1 lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html cert-portal.siemens.com: https://cert-portal.siemens.com/productcert/html/ssa-265688.html