CVE-2025-21702

Public on 2025-02-18
Modified on 2025-02-21
Description

In the Linux kernel, the following vulnerability has been resolved:

pfifo_tail_enqueue: Drop new packet when sch->limit == 0

Severity
Important
See what this means
CVSS v3 Base Score
7.0
See breakdown

Affected Packages

Platform Package Release Date Advisory
Amazon Linux 1 kernel 2025-03-17 ALAS-2025-1966
Amazon Linux 2 - Core kernel 2025-03-25 ALAS2-2025-2800
Amazon Linux 2 - Kernel-5.10 Extra kernel 2025-03-06 ALAS2KERNEL-5.10-2025-085
Amazon Linux 2 - Kernel-5.15 Extra kernel 2025-03-06 ALAS2KERNEL-5.15-2025-067
Amazon Linux 2 - Kernel-5.4 Extra kernel 2025-03-06 ALAS2KERNEL-5.4-2025-096
Amazon Linux 2 - Kernel-5.4 Extra kernel 2025-04-01 ALAS2KERNEL-5.4-2025-097
Amazon Linux 2023 kernel 2025-03-26 ALAS2023-2025-901
Amazon Linux 2 - Livepatch Extra kernel-livepatch-5.10.233-223.887 2025-04-01 ALAS2LIVEPATCH-2025-208
Amazon Linux 2 - Livepatch Extra kernel-livepatch-5.10.233-224.894 2025-04-01 ALAS2LIVEPATCH-2025-209
Amazon Linux 2 - Livepatch Extra kernel-livepatch-5.10.234-225.895 2025-04-01 ALAS2LIVEPATCH-2025-210
Amazon Linux 2 - Livepatch Extra kernel-livepatch-5.10.234-225.910 2025-04-01 ALAS2LIVEPATCH-2025-207

CVSS Scores

Score Type Score Vector
Amazon Linux CVSSv3 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H