THREAT OPS › Threat News › [NVD] CVE-2025-21853 (MEDIUM 5.5) — In the Linux kernel, the following vulnerability has been resolved:
bpf: avoid holding freeze_mutex during mmap operation
We use map->freeze_mutex to prevent races between map_freeze() and
memory mapping BPF map contents with writable permissions. The way we
naively do this mea
[NVD] CVE-2025-21853 (MEDIUM 5.5) — In the Linux kernel, the following vulnerability has been resolved: bpf: avoid holding freeze_mutex during mmap operation We use map->freeze_mutex to prevent races between map_freeze() and memory mapping BPF map contents with writable permissions. The way we naively do this mea
CVE-2025-21853 CVSS: 5.5 MEDIUM Published: 2025-03-12T10:15:18.063
In the Linux kernel, the following vulnerability has been resolved:
bpf: avoid holding freeze_mutex during mmap operation
We use map->freeze_mutex to prevent races between map_freeze() and memory mapping BPF map contents with writable permissions. The way we naively do this means we'll hold freeze_mutex for entire duration of al
Indicators of compromise
- CVE-2025-21853cve
- https://lore.kernel.org/bpf/678dcbc9.050a0220.303755.0066.GAE@google.com/url
Original source: https://nvd.nist.gov/vuln/detail/CVE-2025-21853