Acknowledged
Created: Oct 13, 2025
Updated: Oct 17, 2025
Found In Version: 10.24.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 24
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]xfrm: xfrm_alloc_spi shouldn't use 0 as SPI[EOL][EOL]x->id.spi == 0 means "no SPI assigned", but since commit[EOL]94f39804d891 ("xfrm: Duplicate SPI Handling"), we now create states[EOL]and add them to the byspi list with this value.[EOL][EOL]__xfrm_state_delete doesn't remove those states from the byspi list,[EOL]since they shouldn't be there, and this shows up as a UAF the next[EOL]time we go through the byspi list.
