CVE-2025-38587
- Source
- https://cve.org/CVERecord?id=CVE-2025-38587
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38587.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-38587
- Downstream
- Related
- Published
- 2025-08-19T17:03:08.924Z
- Modified
- 2026-03-12T02:17:41.302173Z
- Summary
- ipv6: fix possible infinite loop in fib6_info_uses_dev()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ipv6: fix possible infinite loop in fib6infouses_dev()
fib6infouses_dev() seems to rely on RCU without an explicit protection.
Like the prior fix in rt6nlmsgsize(), we need to make sure fib6delroute() or fib6addrt2node() have not removed the anchor from the list, or we risk an infinite loop.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38587.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/16d21816c0918f8058b5fc14cbe8595d62046e2d
- https://git.kernel.org/stable/c/9cb6de8ee144a94ae7a40bdb32560329ab7276f0
- https://git.kernel.org/stable/c/bc85e62394f008fa848c4ba02c936c735a3e8ef5
- https://git.kernel.org/stable/c/db65739d406c72776fbdbbc334be827ef05880d2
- https://git.kernel.org/stable/c/e09be457b71b983a085312ff9e981f51e4ed3211
- https://git.kernel.org/stable/c/f8d8ce1b515a0a6af72b30502670a406cfb75073
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38587.json
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
- https://nvd.nist.gov/vuln/detail/CVE-2025-38587
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd0ec61c9f3583b76aebdbb271f5c0d3fcccd48b2Fixedbc85e62394f008fa848c4ba02c936c735a3e8ef5
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced52da02521ede55fb86546c3fffd9377b3261b91fFixed9cb6de8ee144a94ae7a40bdb32560329ab7276f0
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced34a949e7a0869dfa31a40416d2a56973fae1807bFixeddb65739d406c72776fbdbbc334be827ef05880d2
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd9ccb18f83ea2bb654289b6ecf014fd267cc988bFixed16d21816c0918f8058b5fc14cbe8595d62046e2dFixede09be457b71b983a085312ff9e981f51e4ed3211Fixedf8d8ce1b515a0a6af72b30502670a406cfb75073
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected11edcd026012ac18acee0f1514db3ed1b160fc6f