vulnerability
Ubuntu: (CVE-2025-21789): linux-fips vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:L/Au:S/C:C/I:N/A:C) | Feb 27, 2025 | Sep 26, 2025 | Nov 4, 2025 |
Severity
6
CVSS
(AV:L/AC:L/Au:S/C:C/I:N/A:C)
Published
Feb 27, 2025
Added
Sep 26, 2025
Modified
Nov 4, 2025
Description
In the Linux kernel, the following vulnerability has been resolved:
LoongArch: csum: Fix OoB access in IP checksum code for negative lengths
Commit 69e3a6aa6be2 ("LoongArch: Add checksum optimization for 64-bit
system") would cause an undefined shift and an out-of-bounds read.
Commit 8bd795fedb84 ("arm64: csum: Fix OoB access in IP checksum code
for negative lengths") fixes the same issue on ARM64.
Solutions
ubuntu-upgrade-linux-fipsubuntu-upgrade-linux-ibm-6-8ubuntu-upgrade-linux-nvidia-6-11ubuntu-upgrade-linux-realtime-6-8
References
- CVE-2025-21789
- https://attackerkb.com/topics/CVE-2025-21789
- CWE-125
- URL-https://git.kernel.org/linus/6287f1a8c16138c2ec750953e35039634018c84a
- URL-https://git.kernel.org/stable/c/6287f1a8c16138c2ec750953e35039634018c84a
- URL-https://git.kernel.org/stable/c/964a8895704a22efc06a2a3276b624a5ae985a06
- URL-https://git.kernel.org/stable/c/9f15a8df542c0f08732a67d1a14ee7c22948fb97
- URL-https://git.kernel.org/stable/c/d6508ffff32b44b6d0de06704034e4eef1c307a7
- URL-https://www.cve.org/CVERecord?id=CVE-2025-21789
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.