Description In the Linux kernel, the following vulnerability has been resolved:
neighbour: use RCU protection in __neigh_notify()
__neigh_notify() can be called without RTNL or RCU protection.
Use RCU protection to avoid potential UAF.
CVSS vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Exploitability: 1.8 | Impact: 5.9 Attack Vector: Local
Complexity: Low
Privileges: Low
User Interaction: None
Scope: Unchanged
Confidentiality: High
Integrity: High
Availability: High
Affected Packages10 packages Show 5 more packages
🔴 Vulnerability Details41 OSV linux-azure, linux-azure-6.8, linux-azure-nvidia vulnerabilities ↗ 2025-09-03 ▶ OSV linux-gke, linux-hwe-6.8, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-raspi vulnerabilities ↗ 2025-08-28 ▶ OSV linux-raspi-realtime vulnerabilities ↗ 2025-08-26 ▶ OSV linux-oracle, linux-oracle-6.8 vulnerabilities ↗ 2025-08-21 ▶ OSV linux-aws-6.8, linux-gcp, linux-gcp-6.8, linux-gkeop, linux-ibm, linux-ibm-6.8 vulnerabilities ↗ 2025-08-20 ▶ Show 36 more
📋 Vendor Advisories42 Ubuntu Linux kernel (Azure) vulnerabilities ↗ 2025-09-03 ▶ Ubuntu Linux kernel vulnerabilities ↗ 2025-08-28 ▶ Ubuntu Linux kernel (Raspberry Pi Real-time) vulnerabilities ↗ 2025-08-26 ▶ Ubuntu Linux kernel (Oracle) vulnerabilities ↗ 2025-08-21 ▶ Ubuntu Linux kernel vulnerabilities ↗ 2025-08-20 ▶ Show 37 more