CVE-2025-21760

HIGH 7.8

ndisc: extend RCU protection in ndisc_send_skb()

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: ndisc: extend RCU protection in ndisc_send_skb() ndisc_send_skb() can be called without RTNL or RCU held. Acquire rcu_read_lock() earlier, so that we can use dev_net_rcu() and avoid a potential UAF.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Feb 27, 2025
Last Updated	May 12, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

1762f7e88eb34f653b4a915be99a102e347dd45e < 10a1f3fece2f0d23a3a618b72b2b4e6f408ef7d1 1762f7e88eb34f653b4a915be99a102e347dd45e < 4d576202b90b1b95a7c428a80b536f91b8201bcc 1762f7e88eb34f653b4a915be99a102e347dd45e < e24d225e4cb8cf108bde00b76594499b98f0a74d 1762f7e88eb34f653b4a915be99a102e347dd45e < a9319d800b5701e7f5e3fa71a5b7c4831fc20d6d 1762f7e88eb34f653b4a915be99a102e347dd45e < ae38982f521621c216fc2f5182cd091f4734641d 1762f7e88eb34f653b4a915be99a102e347dd45e < 789230e5a8c1097301afc802e242c79bc8835c67 1762f7e88eb34f653b4a915be99a102e347dd45e < 04e05112f10354ffc3bb6cc796d553bab161594c 1762f7e88eb34f653b4a915be99a102e347dd45e < ed6ae1f325d3c43966ec1b62ac1459e2b8e45640

Linux / Linux

2.6.26

References

NVD ↗ CVE.org ↗ EPSS Data ↗