We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-22110

netfilter: nfnetlink_queue: Initialize ctx to avoid memory allocation error



Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_queue: Initialize ctx to avoid memory allocation error It is possible that ctx in nfqnl_build_packet_message() could be used before it is properly initialize, which is only initialized by nfqnl_get_sk_secctx(). This patch corrects this problem by initializing the lsmctx to a safe value when it is declared. This is similar to the commit 35fcac7a7c25 ("audit: Initialize lsmctx to avoid memory allocation error").

Reserved 2024-12-29 | Published 2025-04-16 | Updated 2025-04-16 | Assigner Linux

Product status

Default status
unaffected

2d470c778120d3cdb8d8ab250329ca85f49f12b1 before ddbf7e1d82a1d0c1d3425931a6cb1b83f8454759
affected

2d470c778120d3cdb8d8ab250329ca85f49f12b1 before 778b09d91baafb13408470c721d034d6515cfa5a
affected

Default status
affected

6.14
affected

Any version before 6.14
unaffected

6.14.2
unaffected

6.15-rc1
unaffected

References

git.kernel.org/...c/ddbf7e1d82a1d0c1d3425931a6cb1b83f8454759

git.kernel.org/...c/778b09d91baafb13408470c721d034d6515cfa5a

cve.org (CVE-2025-22110)

nvd.nist.gov (CVE-2025-22110)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-22110

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.