CVE-2025-22004

Updated: 2025-09-15 16:08:20.192836

Description:

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix use after free in lec_send() The ->send() operation frees skb so save the length before calling ->send() to avoid a use after free.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x NONE 0.0
CVSS Version 3.x HIGH 7.0

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement
AlmaLinux 9.2 ESU kernel 5.14.0 7.0 HIGH Released CLSA-2025:1753298962 2025-07-24 01:55:30
CentOS 6 ELS kernel 2.6.32 7.0 HIGH Released CLSA-2025:1762454401 2025-11-11 03:37:03
CentOS 7 ELS kernel 3.10.0 7.0 HIGH Released CLSA-2025:1757967705 2025-09-30 05:36:23
CentOS 8.4 ELS kernel 4.18.0 7.0 HIGH Released CLSA-2025:1754553172 2025-08-08 02:00:10
CentOS 8.5 ELS kernel 4.18.0 7.0 HIGH Released CLSA-2025:1754553993 2025-08-08 02:00:11
CentOS Stream 8 ELS kernel 4.18.0 7.0 HIGH Released CLSA-2025:1754552669 2025-08-08 02:00:09
CloudLinux 7 ELS kernel 3.10.0 7.0 HIGH Ignored 2025-11-07 23:41:07 CloudLinux 6 and 7 support is limited and provided on demand. We strongly recommend upgrading to Clo...
Oracle Linux 6 ELS kernel 2.6.32 7.0 HIGH Released CLSA-2025:1762455270 2025-11-07 00:11:34
Oracle Linux 7 ELS kernel 3.10.0 7.0 HIGH Released CLSA-2025:1757698145 2025-09-12 19:25:33
Oracle Linux 7 ELS kernel-uek 5.4.17 7.0 HIGH Released CLSA-2025:1757963029 2025-09-16 11:21:07
Total: 15