CVE-2025-22005 : In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix m

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix memleak of nhc_pcpu_rth_output in fib_check_nh_v6_gw(). fib_check_nh_v6_gw() expects that fib6_nh_init() cleans up everything when it fails. Commit 7dd73168e273 ("ipv6: Always allocate pcpu memory in a fib6_nh") moved fib_nh_common_init() before alloc_percpu_gfp() within fib6_nh_init() but forgot to add cleanup for fib6_nh->nh_common.nhc_pcpu_rth_output in case it fails to allocate fib6_nh->rt6i_pcpu, resulting in memleak. Let's call fib_nh_common_release() and clear nhc_pcpu_rth_output in the error path. Note that we can remove the fib6_nh_release() call in nh_create_ipv6() later in net-next.git.

Published 2025-04-03 07:19:07

Updated 2025-04-10 16:09:51

Source Linux

View at NVD, CVE.org

Products affected by CVE-2025-22005

Linux » Linux Kernel
Versions from including (>=) 5.5 and before (<) 5.10.236
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.7 and before (<) 6.12.21
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 5.3 and before (<) 5.4.292
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 5.16 and before (<) 6.1.132
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.2 and before (<) 6.6.85
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.13 and before (<) 6.13.9
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.14 Update RC1
cpe:2.3:o:linux:linux_kernel:6.14:rc1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.14 Update RC2
cpe:2.3:o:linux:linux_kernel:6.14:rc2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.14 Update RC3
cpe:2.3:o:linux:linux_kernel:6.14:rc3:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.14 Update RC4
cpe:2.3:o:linux:linux_kernel:6.14:rc4:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.14 Update RC5
cpe:2.3:o:linux:linux_kernel:6.14:rc5:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.14 Update RC6
cpe:2.3:o:linux:linux_kernel:6.14:rc6:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.14 Update RC7
cpe:2.3:o:linux:linux_kernel:6.14:rc7:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2025-22005

EPSS FAQ

0.02%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 3 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2025-22005

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	1.8	3.6	NIST	2025-04-10
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	N/A	N/A	RedHat-CVE-2025-22005	2025-04-04
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2025-22005

CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2025-22005

Jump to

Vulnerability Details : CVE-2025-22005

Products affected by CVE-2025-22005

Exploit prediction scoring system (EPSS) score for CVE-2025-22005

CVSS scores for CVE-2025-22005

CWE ids for CVE-2025-22005

References for CVE-2025-22005