Description

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT On PREEMPT_RT kernels, after rt6_get_pcpu_route() returns NULL, the current task can be preempted. Another task running on the same CPU may then execute rt6_make_pcpu_route() and successfully install a pcpu_rt entry. When the first task resumes execution, its cmpxchg() in rt6_make_pcpu_route() will fail because rt6i_pcpu is no longer NULL, triggering the BUG_ON(prev). It's easy to reproduce it by adding mdelay() after rt6_get_pcpu_route(). Using preempt_disable/enable is not appropriate here because ip6_rt_pcpu_alloc() may sleep. Fix this by handling the cmpxchg() failure gracefully on PREEMPT_RT: free our allocation and return the existing pcpu_rt installed by another task. The BUG_ON is replaced by WARN_ON_ONCE for non-PREEMPT_RT kernels where such races should not occur.

INFO

Published Date :

2026-01-13T15:34:44.832Z

Last Modified :

2026-01-13T15:34:44.832Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-71080 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-71080.

URL Resource
https://git.kernel.org/stable/c/1adaea51c61b52e24e7ab38f7d3eba023b2d050d cve-icon cve-icon
https://git.kernel.org/stable/c/1dc33ad0867325f8d2c6d7b2a6f542d4f3121f66 cve-icon cve-icon
https://git.kernel.org/stable/c/787515ccb2292f82eb0876993129154629a49651 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026011338-CVE-2025-71080-f9ae@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-71080 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-71080 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact