CVE-2025-21788

Published: Feb 27, 2025Modified: Oct 1, 2025

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ti: am65-cpsw: fix memleak in certain XDP cases If the XDP program doesn't result in XDP_PASS then we leak the memory allocated by am65_cpsw_build_skb(). It is pointless to allocate SKB memory before running the XDP program as we would be wasting CPU cycles for cases other than XDP_PASS. Move the SKB allocation after evaluating the XDP program result. This fixes the memleak. A performance boost is seen for XDP_DROP test. XDP_DROP test: Before: 460256 rx/s 0 err/s After: 784130 rx/s 0 err/s

Affected (4)

Products: Linux: Linux Kernel

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 6.10 to 6.12.16
Linux Linux Kernel	From 6.13 to 6.13.4
Linux Linux Kernel	Version 6.14 rc1
Linux Linux Kernel	Version 6.14 rc2

Related CWEs

Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

References (3)

https://git.kernel.org/stable/c/1bba1d042107167164a0ae3a843fdf650ab005d7

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Mailing ListPatch

https://git.kernel.org/stable/c/5db843258de1e4e6b1ef1cbd1797923c9e3de548

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Mailing ListPatch

https://git.kernel.org/stable/c/dc11f049612b9d926aca2e55f8dc9d82850d0da3

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Mailing ListPatch

Timeline

No history available yet.