Description

In the Linux kernel, the following vulnerability has been resolved: zram: fix potential UAF of zram table If zram_meta_alloc failed early, it frees allocated zram->table without setting it NULL. Which will potentially cause zram_meta_free to access the table if user reset an failed and uninitialized device.

INFO

Published Date :

2025-01-31T11:25:34.546Z

Last Modified :

2025-11-03T20:58:51.664Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-21671 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-21671.

URL Resource
https://git.kernel.org/stable/c/212fe1c0df4a150fb6298db2cfff267ceaba5402 cve-icon cve-icon
https://git.kernel.org/stable/c/571d3f6045cd3a6d9f6aec33b678f3ffe97582ef cve-icon cve-icon
https://git.kernel.org/stable/c/902ef8f16d5ca77edc77c30656be54186c1e99b7 cve-icon cve-icon
https://git.kernel.org/stable/c/fe3de867f94819ba0f28e035c0b0182150147d95 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2025013159-CVE-2025-21671-c4b0@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-21671 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-21671 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact