Updated: 2025-12-28 03:41:17.002382
Description:
In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: fix region locking in hash types Region locking introduced in v5.6-rc4 contained three macros to handle the region locks: ahash_bucket_start(), ahash_bucket_end() which gave back the start and end hash bucket values belonging to a given region lock and ahash_region() which should give back the region lock belonging to a given hash bucket. The latter was incorrect which can lead to a race condition between the garbage collector and adding new elements when a hash type of set is defined with timeouts.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | 0.0 | |
| CVSS Version 3.x | MEDIUM | 5.5 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| AlmaLinux 9.2 ESU | kernel | 5.14.0 | 5.5 | MEDIUM | Needs Triage | 2025-12-28 07:58:37 | ||
| Oracle Linux 7 ELS | kernel-uek | 5.4.17 | 5.5 | MEDIUM | Released | CLSA-2025:1757963029 | 2025-09-16 11:20:15 | |
| TuxCare 9.6 ESU | kernel | 5.14.0 | 5.5 | MEDIUM | Needs Triage | 2025-12-28 07:58:36 | ||
| Ubuntu 18.04 ELS | linux | 4.15.0 | 5.5 | MEDIUM | Not Vulnerable | 2025-10-30 03:07:46 | ||
| Ubuntu 20.04 ELS | linux | 5.4.0 | 5.5 | MEDIUM | Released | CLSA-2025:1758019011 | 2025-09-16 22:30:13 |