THREATOPS
THREAT OPSThreat News › [NVD] CVE-2025-21764 (HIGH 7.8) — In the Linux kernel, the following vulnerability has been resolved: ndisc: use RCU protection in ndisc_alloc_skb() ndisc_alloc_skb() can be called without RTNL or RCU being held. Add RCU protection to avoid possible UAF.

[NVD] CVE-2025-21764 (HIGH 7.8) — In the Linux kernel, the following vulnerability has been resolved: ndisc: use RCU protection in ndisc_alloc_skb() ndisc_alloc_skb() can be called without RTNL or RCU being held. Add RCU protection to avoid possible UAF.

lownvdPublished 2025-02-27

CVE-2025-21764 CVSS: 7.8 HIGH Published: 2025-02-27T03:15:17.063

In the Linux kernel, the following vulnerability has been resolved:

ndisc: use RCU protection in ndisc_alloc_skb()

ndisc_alloc_skb() can be called without RTNL or RCU being held.

Add RCU protection to avoid possible UAF.

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2025-21764