CVE-2025-37997

Source
https://nvd.nist.gov/vuln/detail/CVE-2025-37997
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37997.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-37997
Downstream
Related
Published
2025-05-29T14:15:36Z
Modified
2025-08-13T00:00:20Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

netfilter: ipset: fix region locking in hash types

Region locking introduced in v5.6-rc4 contained three macros to handle the region locks: ahashbucketstart(), ahashbucketend() which gave back the start and end hash bucket values belonging to a given region lock and ahash_region() which should give back the region lock belonging to a given hash bucket. The latter was incorrect which can lead to a race condition between the garbage collector and adding new elements when a hash type of set is defined with timeouts.

References

Affected packages