Linux Kernel IPv6 RCU Protection Vulnerability in Default MSS Calculation

Vulnerability

A vulnerability in the Linux kernel's IPv6 handling has been addressed. The issue arose because the function ip6_default_advmss() lacked proper Read-Copy-Update (RCU) protection, potentially allowing the network structure it accessed to be removed prematurely. This could lead to inconsistent or erroneous behavior in network packet handling.

Impact

Exploitation of this vulnerability could cause improper handling of network packets, potentially leading to instability or unexpected behavior in network communications.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel IPv6 RCU Protection Vulnerability in Default MSS Calculation

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating