CVE-2025-21678 | Linux Kernel up to 5.15.176/6.1.126/6.6.73/6.12.10 drivers/net/gtp.c gtp_newlink iteration

Inserito da Angelo Barbosa | Gen 31, 2025 | CVE

A vulnerability was found in Linux Kernel up to 5.15.176/6.1.126/6.6.73/6.12.10. It has been classified as problematic. This affects the function gtp_newlink in the library lib/ref_tracker.c of the file drivers/net/gtp.c. The manipulation leads to excessive iteration.

This vulnerability is uniquely identified as CVE-2025-21678. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-21678 | Linux Kernel up to 5.15.176/6.1.126/6.6.73/6.12.10 drivers/net/gtp.c gtp_newlink iteration

Post correlati

CVE-2020-12820 | Fortinet FortiOS up to 5.6.12/6.0.10 SSL VPN stack-based overflow (FG-IR-20-083)

CVE-2024-11350 | scriptsbundle AdForest Plugin up to 5.1.6 on WordPress adforest_reset_password password recovery

CVE-2023-52094 | Trend Micro Apex One Security Agent Security Agent Updater link following

CVE-2024-21520 | djangorestframework up to 3.15.1 Template Filter break_long_headers cross site scripting (SNYK-PYTHON-DJANGORESTFRAMEWORK-7252137)