Linux Kernel IPVS Module Cleanup Warning Vulnerability

Vulnerability

A vulnerability in the Linux kernel's IP Virtual Server (IPVS) module has been addressed. During the initialization process, if the 'ip_vs_conn' or 'ip_vs_conn_sync' files fail to be created, the initialization still completes successfully by default. This oversight leads to a warning during the cleanup process, as the removal routine cannot find the expected 'ip_vs_conn_sync' file. The warning originates from the 'remove_proc_entry' function, indicating a missed cleanup opportunity for the IPVS connection synchronization file.

Impact

The vulnerability causes a warning to be generated during the network namespace cleanup process, indicating that the expected 'ip_vs_conn_sync' file was not found. This warning suggests a potential oversight in resource management within the IPVS module.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel IPVS Module Cleanup Warning Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating