Description

In the Linux kernel, the following vulnerability has been resolved: io_uring/kbuf: reallocate buf lists on upgrade IORING_REGISTER_PBUF_RING can reuse an old struct io_buffer_list if it was created for legacy selected buffer and has been emptied. It violates the requirement that most of the field should stay stable after publish. Always reallocate it instead.

INFO

Published Date :

2025-03-07T09:09:56.127Z

Last Modified :

2026-03-07T11:41:55.810Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-21836 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-21836.

URL Resource
https://git.kernel.org/stable/c/146a185f6c05ee263db715f860620606303c4633 cve-icon cve-icon
https://git.kernel.org/stable/c/2a5febbef40ce968e295a7aeaa5d5cbd9e3e5ad4 cve-icon cve-icon
https://git.kernel.org/stable/c/7d0dc28dae836caf7645fef62a10befc624dd17b cve-icon cve-icon
https://git.kernel.org/stable/c/8802766324e1f5d414a81ac43365c20142e85603 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025030706-CVE-2025-21836-b358@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-21836 cve-icon
https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-21836 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact