Linux Kernel RCU Protection Vulnerability in IP Path MTU Update Function

Vulnerability

A vulnerability in the Linux kernel's IPv4 handling has been addressed. The issue arose because the __ip_rt_update_pmtu()__ function did not use Read-Copy-Update (RCU) protection, potentially allowing the network structure it accessed to be removed prematurely. This could lead to inconsistencies or errors in network packet management.

Impact

Exploitation of this vulnerability could cause improper handling of network packet fragmentation and transmission, potentially leading to degraded network performance or reliability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel RCU Protection Vulnerability in IP Path MTU Update Function

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating