We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-21972

net: mctp: unshare packets when reassembling



Description

In the Linux kernel, the following vulnerability has been resolved: net: mctp: unshare packets when reassembling Ensure that the frag_list used for reassembly isn't shared with other packets. This avoids incorrect reassembly when packets are cloned, and prevents a memory leak due to circular references between fragments and their skb_shared_info. The upcoming MCTP-over-USB driver uses skb_clone which can trigger the problem - other MCTP drivers don't share SKBs. A kunit test is added to reproduce the issue.

Reserved 2024-12-29 | Published 2025-04-01 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

4a992bbd365094730a31bae1e12a6ca695336d57 before 5c47d5bfa7b096cf8890afac32141c578583f8e0
affected

4a992bbd365094730a31bae1e12a6ca695336d57 before f44fff3d3c6cd67b6f348b821d73c4d6888c7a6e
affected

4a992bbd365094730a31bae1e12a6ca695336d57 before f5d83cf0eeb90fade4d5c4d17d24b8bee9ceeecc
affected

Default status
affected

5.15
affected

Any version before 5.15
unaffected

6.12.20
unaffected

6.13.8
unaffected

6.14
unaffected

References

git.kernel.org/...c/5c47d5bfa7b096cf8890afac32141c578583f8e0

git.kernel.org/...c/f44fff3d3c6cd67b6f348b821d73c4d6888c7a6e

git.kernel.org/...c/f5d83cf0eeb90fade4d5c4d17d24b8bee9ceeecc

cve.org (CVE-2025-21972)

nvd.nist.gov (CVE-2025-21972)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-21972

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.