CVE-2025-22110 — Use of Uninitialized Resource in Linux
CWE-908 — Use of Uninitialized ResourceCWE-824 — Access of Uninitialized Pointer11 documents6 sources
Severity
5.5MEDIUMNVD
EPSS
0.1%
top 71.00%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedApr 16
Latest updateJul 8
Description
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nfnetlink_queue: Initialize ctx to avoid memory allocation error
It is possible that ctx in nfqnl_build_packet_message() could be used
before it is properly initialize, which is only initialized
by nfqnl_get_sk_secctx().
This patch corrects this problem by initializing the lsmctx to a safe
value when it is declared.
This is similar to the commit 35fcac7a7c25
("audit: Initialize lsmctx to avoid memory allocation er…
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6
Affected Packages5 packages
▶CVEListV5linux/linux2d470c778120d3cdb8d8ab250329ca85f49f12b1 — ddbf7e1d82a1d0c1d3425931a6cb1b83f8454759+2
Patches
🔴Vulnerability Details
5OSV▶
CVE-2025-22110: In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_queue: Initialize ctx to avoid memory allocation error It is↗2025-04-16
GHSA▶
GHSA-96f3-qv87-v4w6: In the Linux kernel, the following vulnerability has been resolved:
netfilter: nfnetlink_queue: Initialize ctx to avoid memory allocation error
It i↗2025-04-16
📋Vendor Advisories
5Red Hat
▶
Debian▶
CVE-2025-22110: linux - In the Linux kernel, the following vulnerability has been resolved: netfilter: ...↗2025