Description

In the Linux kernel, the following vulnerability has been resolved: keys: Fix UAF in key_put() Once a key's reference count has been reduced to 0, the garbage collector thread may destroy it at any time and so key_put() is not allowed to touch the key after that point. The most key_put() is normally allowed to do is to touch key_gc_work as that's a static global variable. However, in an effort to speed up the reclamation of quota, this is now done in key_put() once the key's usage is reduced to 0 - but now the code is looking at the key after the deadline, which is forbidden. Fix this by using a flag to indicate that a key can be gc'd now rather than looking at the key's refcount in the garbage collector.

INFO

Published Date :

2025-03-31T19:41:46.137Z

Last Modified :

2025-05-04T07:23:40.081Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-21893 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-21893.

URL Resource
https://git.kernel.org/stable/c/6afe2ea2daec156bd94ad2c5a6f4f4c48240dcd3 cve-icon cve-icon
https://git.kernel.org/stable/c/75845c6c1a64483e9985302793dbf0dfa5f71e32 cve-icon cve-icon
https://git.kernel.org/stable/c/f6a3cf833188e897c97028cd7b926e3f2cb1a8c0 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025033126-CVE-2025-21893-f2b4@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-21893 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-21893 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact