THREAT OPS › Threat News › [NVD] CVE-2025-21846 (MEDIUM 5.5) — In the Linux kernel, the following vulnerability has been resolved:
acct: perform last write from workqueue
In [1] it was reported that the acct(2) system call can be used to
trigger NULL deref in cases where it is set to write to a file that
triggers an internal lookup. This c
[NVD] CVE-2025-21846 (MEDIUM 5.5) — In the Linux kernel, the following vulnerability has been resolved: acct: perform last write from workqueue In [1] it was reported that the acct(2) system call can be used to trigger NULL deref in cases where it is set to write to a file that triggers an internal lookup. This c
CVE-2025-21846 CVSS: 5.5 MEDIUM Published: 2025-03-12T10:15:16.960
In the Linux kernel, the following vulnerability has been resolved:
acct: perform last write from workqueue
In [1] it was reported that the acct(2) system call can be used to trigger NULL deref in cases where it is set to write to a file that triggers an internal lookup. This can e.g., happen when pointing acc(2) to /sys/power/r
MITRE ATT&CK techniques
- CredentialsT1589.001
Indicators of compromise
- CVE-2025-21846cve
Original source: https://nvd.nist.gov/vuln/detail/CVE-2025-21846