CVE-2025-68241

In the Linux kernel, the following vulnerability has been resolved: ipv4: route: Prevent rtbindexception from rebinding stale fnhe The sit driver's packet transmission path calls: sittunnelxmit - updateorcreatefnhe, which lead to fnheremoveoldest being called to delete entries exceeding...

CVE-2025-68241

CVE-2025-68241 in the Linux kernel concerns IPv4 route handling in the SIT path. The race occurs when fnhe entries are reclaimed: fnhe_remove_oldest() may select a stale fnheX that is about to be freed, and __mkroute_output() can fetch that same fnheX, allowing rt_bind_exception() to bind a dst w...