CVE-2025-21648

high

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: clamp maximum hashtable size to INT_MAX Use INT_MAX as maximum size for the conntrack hashtable. Otherwise, it is possible to hit WARN_ON_ONCE in __kvmalloc_node_noprof() when resizing hashtable because __GFP_NOWARN is unset. See: 0708a0afe291 ("mm: Consider __GFP_NOWARN flag for oversized kvmalloc() calls") Note: hashtable resize is only possible from init_netns.

References

https://git.kernel.org/stable/c/f559357d035877b9d0dcd273e0ff83e18e1d46aa

https://git.kernel.org/stable/c/d5807dd1328bbc86e059c5de80d1bbee9d58ca3d

https://git.kernel.org/stable/c/b541ba7d1f5a5b7b3e2e22dc9e40e18a7d6dbc13

https://git.kernel.org/stable/c/b1b2353d768f1b80cd7fe045a70adee576b9b338

https://git.kernel.org/stable/c/5552b4fd44be3393b930434a7845d8d95a2a3c33

Details

Source: Mitre, NVD

Published: 2025-01-19

Updated: 2025-01-23

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Severity: High