CNNVD-202510-1666 Information

CNNVD ID

CNNVD-202510-1666

Related CVE

CVE-2025-39965

• CNNVD Published: 2025-10-13

Description (Chinese)

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于xfrm_alloc_spi错误使用0作为SPI值，可能导致释放后重用。

Description (English)

Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. Linux Kernel had a security loophole, which stemmed from the wrong use of 0 as a SPI value by xfrm alloc spi, which could lead to reuse after release.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Linux

Published

2025-10-13

Last Modified

2026-02-24

References

https://git.kernel.org/stable/c/0baf92d0b1590b903c1f4ead75e61715e50e8146 https://git.kernel.org/stable/c/9fcedabaae0096f712bbb4ccca6a8538af1cd1c8 https://git.kernel.org/stable/c/a78e55776522373c446f18d5002a8de4b09e6bf7 https://git.kernel.org/stable/c/cd8ae32e4e4652db55bce6b9c79267d8946765a9

Patch

https://www.kernel.org/