Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ti: am65-cpsw: fix memleak in certain XDP cases If the XDP program doesn't result in XDP_PASS then we leak the memory allocated by am65_cpsw_build_skb(). It is pointless to allocate SKB memory before running the XDP program as we would be wasting CPU cycles for cases other than XDP_PASS. Move the SKB allocation after evaluating the XDP program result. This fixes the memleak. A performance boost is seen for XDP_DROP test. XDP_DROP test: Before: 460256 rx/s 0 err/s After: 784130 rx/s 0 err/s
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 6.10, < 6.12.16 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/1bba1d042107167164a0ae3a843fdf650ab005d7Mailing ListPatch
- https://git.kernel.org/stable/c/5db843258de1e4e6b1ef1cbd1797923c9e3de548Mailing ListPatch
- https://git.kernel.org/stable/c/dc11f049612b9d926aca2e55f8dc9d82850d0da3Mailing ListPatch
FAQ
What is CVE-2025-21788?
CVE-2025-21788 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ti: am65-cpsw: fix memleak in certain XDP cases If the XDP program doesn't result in XDP_PASS then we leak the memo...
How severe is CVE-2025-21788?
CVE-2025-21788 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-21788?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.