CVE-2025-21846 in Linuxinfo

Zusammenfassung

von MITRE • 12.03.2025

In the Linux kernel, the following vulnerability has been resolved:

acct: perform last write from workqueue

In [1] it was reported that the acct(2) system call can be used to
trigger NULL deref in cases where it is set to write to a file that triggers an internal lookup. This can e.g., happen when pointing acc(2) to /sys/power/resume. At the point the where the write to this file happens the calling task has already exited and called exit_fs(). A lookup will thus trigger a NULL-deref when accessing current->fs.

Reorganize the code so that the the final write happens from the workqueue but with the caller's credentials. This preserves the (strange) permission model and has almost no regression risk.

This api should stop to exist though.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

Linux

Reservieren

29.12.2024

Veröffentlichung

12.03.2025

Moderieren

akzeptiert

Eintrag

VDB-299523

CPE

bereit

CWE

CWE-476 (bestätigt)

CVSS

5.7 (VulDB)

EPSS

0.00017

KEV

nein

Aktivitäten

very low

Sektor

Finance, Police, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-21846
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-21846
CVE Details	https://www.cvedetails.com/cve/CVE-2025-21846/

◂ Zurück Übersicht Weiter ▸

Want to know what is going to be exploited?

We predict KEV entries!