vulnerability
Ubuntu: (Multiple Advisories) (CVE-2025-21855): Linux kernel vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:S/C:C/I:C/A:C) | Mar 12, 2025 | May 21, 2025 | Jan 15, 2026 |
Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
Mar 12, 2025
Added
May 21, 2025
Modified
Jan 15, 2026
Description
In the Linux kernel, the following vulnerability has been resolved:
ibmvnic: Don't reference skb after sending to VIOS
Previously, after successfully flushing the xmit buffer to VIOS,
the tx_bytes stat was incremented by the length of the skb.
It is invalid to access the skb memory after sending the buffer to
the VIOS because, at any point after sending, the VIOS can trigger
an interrupt to free this memory. A race between reading skb->len
and freeing the skb is possible (especially during LPM) and will
result in use-after-free:
==================================================================
BUG: KASAN: slab-use-after-free in ibmvnic_xmit+0x75c/0x1808 [ibmvnic]
Read of size 4 at addr c00000024eb48a70 by task hxecom/14495
<...>
Call Trace:
[c000000118f66cf0] [c0000000018cba6c] dump_stack_lvl+0x84/0xe8 (unreliable)
[c000000118f66d20] [c0000000006f0080] print_report+0x1a8/0x7f0
[c000000118f66df0] [c0000000006f08f0] kasan_report+0x128/0x1f8
[c000000118f66f00] [c0000000006f2868] __asan_load4+0xac/0xe0
[c000000118f66f20] [c0080000046eac84] ibmvnic_xmit+0x75c/0x1808 [ibmvnic]
[c000000118f67340] [c0000000014be168] dev_hard_start_xmit+0x150/0x358
<...>
Freed by task 0:
kasan_save_stack+0x34/0x68
kasan_save_track+0x2c/0x50
kasan_save_free_info+0x64/0x108
__kasan_mempool_poison_object+0x148/0x2d4
napi_skb_cache_put+0x5c/0x194
net_tx_action+0x154/0x5b8
handle_softirqs+0x20c/0x60c
do_softirq_own_stack+0x6c/0x88
<...>
The buggy address belongs to the object at c00000024eb48a00 which
belongs to the cache skbuff_head_cache of size 224
==================================================================
Solutions
ubuntu-upgrade-linux-image-4-15-0-1142-fipsubuntu-upgrade-linux-image-4-15-0-1149-oracleubuntu-upgrade-linux-image-4-15-0-1169-kvmubuntu-upgrade-linux-image-4-15-0-1180-gcpubuntu-upgrade-linux-image-4-15-0-1187-awsubuntu-upgrade-linux-image-4-15-0-1195-azureubuntu-upgrade-linux-image-4-15-0-2088-gcp-fipsubuntu-upgrade-linux-image-4-15-0-2104-azure-fipsubuntu-upgrade-linux-image-4-15-0-2125-aws-fipsubuntu-upgrade-linux-image-4-15-0-245-genericubuntu-upgrade-linux-image-4-15-0-245-lowlatencyubuntu-upgrade-linux-image-4-4-0-1120-fipsubuntu-upgrade-linux-image-4-4-0-1150-awsubuntu-upgrade-linux-image-4-4-0-1151-kvmubuntu-upgrade-linux-image-4-4-0-1188-awsubuntu-upgrade-linux-image-4-4-0-276-genericubuntu-upgrade-linux-image-4-4-0-276-lowlatencyubuntu-upgrade-linux-image-5-15-0-1039-nvidia-tegra-igxubuntu-upgrade-linux-image-5-15-0-1039-nvidia-tegra-igx-rtubuntu-upgrade-linux-image-5-15-0-1050-nvidia-tegraubuntu-upgrade-linux-image-5-15-0-1050-nvidia-tegra-rtubuntu-upgrade-linux-image-5-15-0-1062-xilinx-zynqmpubuntu-upgrade-linux-image-5-15-0-1081-gkeopubuntu-upgrade-linux-image-5-15-0-1090-intel-iot-realtimeubuntu-upgrade-linux-image-5-15-0-1090-kvmubuntu-upgrade-linux-image-5-15-0-1092-ibmubuntu-upgrade-linux-image-5-15-0-1092-raspiubuntu-upgrade-linux-image-5-15-0-1093-intel-iotgubuntu-upgrade-linux-image-5-15-0-1093-nvidiaubuntu-upgrade-linux-image-5-15-0-1093-nvidia-lowlatencyubuntu-upgrade-linux-image-5-15-0-1094-gkeubuntu-upgrade-linux-image-5-15-0-1095-oracleubuntu-upgrade-linux-image-5-15-0-1097-realtimeubuntu-upgrade-linux-image-5-15-0-1098-awsubuntu-upgrade-linux-image-5-15-0-1098-aws-64kubuntu-upgrade-linux-image-5-15-0-1098-aws-fipsubuntu-upgrade-linux-image-5-15-0-1098-gcpubuntu-upgrade-linux-image-5-15-0-1098-gcp-fipsubuntu-upgrade-linux-image-5-15-0-1102-azureubuntu-upgrade-linux-image-5-15-0-1102-azure-fipsubuntu-upgrade-linux-image-5-15-0-164-fipsubuntu-upgrade-linux-image-5-15-0-164-genericubuntu-upgrade-linux-image-5-15-0-164-generic-64kubuntu-upgrade-linux-image-5-15-0-164-generic-lpaeubuntu-upgrade-linux-image-5-15-0-164-lowlatencyubuntu-upgrade-linux-image-5-15-0-164-lowlatency-64kubuntu-upgrade-linux-image-5-4-0-1057-iotubuntu-upgrade-linux-image-5-4-0-1071-xilinx-zynqmpubuntu-upgrade-linux-image-5-4-0-1099-ibmubuntu-upgrade-linux-image-5-4-0-1127-fipsubuntu-upgrade-linux-image-5-4-0-1136-raspiubuntu-upgrade-linux-image-5-4-0-1140-kvmubuntu-upgrade-linux-image-5-4-0-1151-oracleubuntu-upgrade-linux-image-5-4-0-1153-awsubuntu-upgrade-linux-image-5-4-0-1153-aws-fipsubuntu-upgrade-linux-image-5-4-0-1156-azureubuntu-upgrade-linux-image-5-4-0-1156-gcpubuntu-upgrade-linux-image-5-4-0-1156-gcp-fipsubuntu-upgrade-linux-image-5-4-0-1157-azure-fipsubuntu-upgrade-linux-image-5-4-0-224-genericubuntu-upgrade-linux-image-5-4-0-224-generic-lpaeubuntu-upgrade-linux-image-5-4-0-224-lowlatencyubuntu-upgrade-linux-image-6-11-0-1010-realtimeubuntu-upgrade-linux-image-6-11-0-1013-raspiubuntu-upgrade-linux-image-6-11-0-1014-awsubuntu-upgrade-linux-image-6-11-0-1014-lowlatencyubuntu-upgrade-linux-image-6-11-0-1014-lowlatency-64kubuntu-upgrade-linux-image-6-11-0-1015-azureubuntu-upgrade-linux-image-6-11-0-1015-azure-fdeubuntu-upgrade-linux-image-6-11-0-1015-gcpubuntu-upgrade-linux-image-6-11-0-1015-gcp-64kubuntu-upgrade-linux-image-6-11-0-1016-oracleubuntu-upgrade-linux-image-6-11-0-1016-oracle-64kubuntu-upgrade-linux-image-6-11-0-1022-oemubuntu-upgrade-linux-image-6-11-0-26-genericubuntu-upgrade-linux-image-6-11-0-26-generic-64kubuntu-upgrade-linux-image-6-8-0-1019-gkeopubuntu-upgrade-linux-image-6-8-0-1022-azure-nvidiaubuntu-upgrade-linux-image-6-8-0-1032-gkeubuntu-upgrade-linux-image-6-8-0-1032-oracleubuntu-upgrade-linux-image-6-8-0-1032-oracle-64kubuntu-upgrade-linux-image-6-8-0-1033-ibmubuntu-upgrade-linux-image-6-8-0-1034-azureubuntu-upgrade-linux-image-6-8-0-1034-azure-fdeubuntu-upgrade-linux-image-6-8-0-1035-awsubuntu-upgrade-linux-image-6-8-0-1035-aws-64kubuntu-upgrade-linux-image-6-8-0-1035-nvidiaubuntu-upgrade-linux-image-6-8-0-1035-nvidia-64kubuntu-upgrade-linux-image-6-8-0-1035-nvidia-lowlatencyubuntu-upgrade-linux-image-6-8-0-1035-nvidia-lowlatency-64kubuntu-upgrade-linux-image-6-8-0-1035-raspiubuntu-upgrade-linux-image-6-8-0-1036-gcpubuntu-upgrade-linux-image-6-8-0-1036-gcp-64kubuntu-upgrade-linux-image-6-8-0-2028-raspi-realtimeubuntu-upgrade-linux-image-6-8-0-78-genericubuntu-upgrade-linux-image-6-8-0-78-generic-64kubuntu-upgrade-linux-image-6-8-0-78-lowlatencyubuntu-upgrade-linux-image-6-8-0-78-lowlatency-64kubuntu-upgrade-linux-image-6-8-1-1030-realtimeubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-aws-4-15ubuntu-upgrade-linux-image-aws-5-15ubuntu-upgrade-linux-image-aws-5-4ubuntu-upgrade-linux-image-aws-6-8ubuntu-upgrade-linux-image-aws-64kubuntu-upgrade-linux-image-aws-64k-5-15ubuntu-upgrade-linux-image-aws-64k-6-8ubuntu-upgrade-linux-image-aws-64k-lts-22-04ubuntu-upgrade-linux-image-aws-64k-lts-24-04ubuntu-upgrade-linux-image-aws-fipsubuntu-upgrade-linux-image-aws-fips-4-15ubuntu-upgrade-linux-image-aws-fips-5-15ubuntu-upgrade-linux-image-aws-fips-5-4ubuntu-upgrade-linux-image-aws-hweubuntu-upgrade-linux-image-aws-lts-18-04ubuntu-upgrade-linux-image-aws-lts-20-04ubuntu-upgrade-linux-image-aws-lts-22-04ubuntu-upgrade-linux-image-aws-lts-24-04ubuntu-upgrade-linux-image-azureubuntu-upgrade-linux-image-azure-4-15ubuntu-upgrade-linux-image-azure-5-15ubuntu-upgrade-linux-image-azure-5-4ubuntu-upgrade-linux-image-azure-6-8ubuntu-upgrade-linux-image-azure-cvmubuntu-upgrade-linux-image-azure-fdeubuntu-upgrade-linux-image-azure-fde-6-8ubuntu-upgrade-linux-image-azure-fde-lts-24-04ubuntu-upgrade-linux-image-azure-fipsubuntu-upgrade-linux-image-azure-fips-4-15ubuntu-upgrade-linux-image-azure-fips-5-15ubuntu-upgrade-linux-image-azure-fips-5-4ubuntu-upgrade-linux-image-azure-lts-18-04ubuntu-upgrade-linux-image-azure-lts-20-04ubuntu-upgrade-linux-image-azure-lts-22-04ubuntu-upgrade-linux-image-azure-lts-24-04ubuntu-upgrade-linux-image-azure-nvidiaubuntu-upgrade-linux-image-azure-nvidia-6-8ubuntu-upgrade-linux-image-azure-nvidia-lts-24-04ubuntu-upgrade-linux-image-fipsubuntu-upgrade-linux-image-fips-5-15ubuntu-upgrade-linux-image-fips-5-4ubuntu-upgrade-linux-image-gcpubuntu-upgrade-linux-image-gcp-4-15ubuntu-upgrade-linux-image-gcp-5-15ubuntu-upgrade-linux-image-gcp-5-4ubuntu-upgrade-linux-image-gcp-6-8ubuntu-upgrade-linux-image-gcp-64kubuntu-upgrade-linux-image-gcp-64k-6-8ubuntu-upgrade-linux-image-gcp-64k-lts-24-04ubuntu-upgrade-linux-image-gcp-fipsubuntu-upgrade-linux-image-gcp-fips-4-15ubuntu-upgrade-linux-image-gcp-fips-5-15ubuntu-upgrade-linux-image-gcp-fips-5-4ubuntu-upgrade-linux-image-gcp-lts-18-04ubuntu-upgrade-linux-image-gcp-lts-20-04ubuntu-upgrade-linux-image-gcp-lts-22-04ubuntu-upgrade-linux-image-gcp-lts-24-04ubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-5-15ubuntu-upgrade-linux-image-generic-5-4ubuntu-upgrade-linux-image-generic-6-8ubuntu-upgrade-linux-image-generic-64kubuntu-upgrade-linux-image-generic-64k-5-15ubuntu-upgrade-linux-image-generic-64k-6-8ubuntu-upgrade-linux-image-generic-64k-hwe-20-04ubuntu-upgrade-linux-image-generic-64k-hwe-22-04ubuntu-upgrade-linux-image-generic-64k-hwe-24-04ubuntu-upgrade-linux-image-generic-hwe-16-04ubuntu-upgrade-linux-image-generic-hwe-18-04ubuntu-upgrade-linux-image-generic-hwe-20-04ubuntu-upgrade-linux-image-generic-hwe-22-04ubuntu-upgrade-linux-image-generic-hwe-24-04ubuntu-upgrade-linux-image-generic-lpaeubuntu-upgrade-linux-image-generic-lpae-5-15ubuntu-upgrade-linux-image-generic-lpae-5-4ubuntu-upgrade-linux-image-generic-lpae-hwe-18-04ubuntu-upgrade-linux-image-generic-lpae-hwe-20-04ubuntu-upgrade-linux-image-generic-lts-xenialubuntu-upgrade-linux-image-gkeubuntu-upgrade-linux-image-gke-5-15ubuntu-upgrade-linux-image-gke-6-8ubuntu-upgrade-linux-image-gkeopubuntu-upgrade-linux-image-gkeop-5-15ubuntu-upgrade-linux-image-gkeop-6-8ubuntu-upgrade-linux-image-ibmubuntu-upgrade-linux-image-ibm-5-15ubuntu-upgrade-linux-image-ibm-5-4ubuntu-upgrade-linux-image-ibm-6-8ubuntu-upgrade-linux-image-ibm-classicubuntu-upgrade-linux-image-ibm-lts-20-04ubuntu-upgrade-linux-image-ibm-lts-24-04ubuntu-upgrade-linux-image-intelubuntu-upgrade-linux-image-intel-iot-realtimeubuntu-upgrade-linux-image-intel-iot-realtime-5-15ubuntu-upgrade-linux-image-intel-iotgubuntu-upgrade-linux-image-intel-iotg-5-15ubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-kvm-5-15ubuntu-upgrade-linux-image-kvm-5-4ubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-lowlatency-5-15ubuntu-upgrade-linux-image-lowlatency-5-4ubuntu-upgrade-linux-image-lowlatency-6-8ubuntu-upgrade-linux-image-lowlatency-64kubuntu-upgrade-linux-image-lowlatency-64k-5-15ubuntu-upgrade-linux-image-lowlatency-64k-6-8ubuntu-upgrade-linux-image-lowlatency-64k-hwe-20-04ubuntu-upgrade-linux-image-lowlatency-64k-hwe-22-04ubuntu-upgrade-linux-image-lowlatency-64k-hwe-24-04ubuntu-upgrade-linux-image-lowlatency-hwe-16-04ubuntu-upgrade-linux-image-lowlatency-hwe-18-04ubuntu-upgrade-linux-image-lowlatency-hwe-20-04ubuntu-upgrade-linux-image-lowlatency-hwe-22-04ubuntu-upgrade-linux-image-lowlatency-hwe-24-04ubuntu-upgrade-linux-image-lowlatency-lts-xenialubuntu-upgrade-linux-image-nvidiaubuntu-upgrade-linux-image-nvidia-5-15ubuntu-upgrade-linux-image-nvidia-6-8ubuntu-upgrade-linux-image-nvidia-64kubuntu-upgrade-linux-image-nvidia-64k-6-8ubuntu-upgrade-linux-image-nvidia-64k-hwe-22-04ubuntu-upgrade-linux-image-nvidia-hwe-22-04ubuntu-upgrade-linux-image-nvidia-lowlatencyubuntu-upgrade-linux-image-nvidia-lowlatency-5-15ubuntu-upgrade-linux-image-nvidia-lowlatency-6-8ubuntu-upgrade-linux-image-nvidia-lowlatency-64kubuntu-upgrade-linux-image-nvidia-lowlatency-64k-6-8ubuntu-upgrade-linux-image-nvidia-tegraubuntu-upgrade-linux-image-nvidia-tegra-5-15ubuntu-upgrade-linux-image-nvidia-tegra-igxubuntu-upgrade-linux-image-nvidia-tegra-igx-5-15ubuntu-upgrade-linux-image-nvidia-tegra-igx-rtubuntu-upgrade-linux-image-nvidia-tegra-igx-rt-5-15ubuntu-upgrade-linux-image-nvidia-tegra-rtubuntu-upgrade-linux-image-nvidia-tegra-rt-5-15ubuntu-upgrade-linux-image-oemubuntu-upgrade-linux-image-oem-20-04ubuntu-upgrade-linux-image-oem-20-04bubuntu-upgrade-linux-image-oem-20-04cubuntu-upgrade-linux-image-oem-20-04dubuntu-upgrade-linux-image-oem-22-04ubuntu-upgrade-linux-image-oem-22-04aubuntu-upgrade-linux-image-oem-22-04bubuntu-upgrade-linux-image-oem-22-04cubuntu-upgrade-linux-image-oem-22-04dubuntu-upgrade-linux-image-oem-24-04bubuntu-upgrade-linux-image-oem-osp1ubuntu-upgrade-linux-image-oracleubuntu-upgrade-linux-image-oracle-4-15ubuntu-upgrade-linux-image-oracle-5-15ubuntu-upgrade-linux-image-oracle-5-4ubuntu-upgrade-linux-image-oracle-6-8ubuntu-upgrade-linux-image-oracle-64kubuntu-upgrade-linux-image-oracle-64k-6-8ubuntu-upgrade-linux-image-oracle-64k-lts-24-04ubuntu-upgrade-linux-image-oracle-lts-18-04ubuntu-upgrade-linux-image-oracle-lts-20-04ubuntu-upgrade-linux-image-oracle-lts-22-04ubuntu-upgrade-linux-image-oracle-lts-24-04ubuntu-upgrade-linux-image-raspiubuntu-upgrade-linux-image-raspi-5-15ubuntu-upgrade-linux-image-raspi-5-4ubuntu-upgrade-linux-image-raspi-6-8ubuntu-upgrade-linux-image-raspi-hwe-18-04ubuntu-upgrade-linux-image-raspi-nolpaeubuntu-upgrade-linux-image-raspi-realtimeubuntu-upgrade-linux-image-raspi-realtime-6-8ubuntu-upgrade-linux-image-raspi2ubuntu-upgrade-linux-image-raspi2-hwe-18-04ubuntu-upgrade-linux-image-realtimeubuntu-upgrade-linux-image-realtime-5-15ubuntu-upgrade-linux-image-realtime-6-8-1ubuntu-upgrade-linux-image-snapdragon-5-4ubuntu-upgrade-linux-image-snapdragon-hwe-18-04ubuntu-upgrade-linux-image-virtualubuntu-upgrade-linux-image-virtual-5-15ubuntu-upgrade-linux-image-virtual-5-4ubuntu-upgrade-linux-image-virtual-6-8ubuntu-upgrade-linux-image-virtual-hwe-16-04ubuntu-upgrade-linux-image-virtual-hwe-18-04ubuntu-upgrade-linux-image-virtual-hwe-20-04ubuntu-upgrade-linux-image-virtual-hwe-22-04ubuntu-upgrade-linux-image-virtual-hwe-24-04ubuntu-upgrade-linux-image-virtual-lts-xenialubuntu-upgrade-linux-image-xilinx-zynqmpubuntu-upgrade-linux-image-xilinx-zynqmp-5-15ubuntu-upgrade-linux-image-xilinx-zynqmp-5-4
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.