Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-1272

Опубликовано: 13 фев. 2025
Источник: redhat
CVSS3: 7.7
EPSS Низкий

Описание

The Linux Kernel lockdown mode for kernel versions starting on 6.12 and above for Fedora Linux has the lockdown mode disabled without any warning. This may allow an attacker to gain access to sensitive information such kernel memory mappings, I/O ports, BPF and kprobes. Additionally unsigned modules can be loaded, leading to execution of untrusted code breaking breaking any Secure Boot protection. This vulnerability affects only Fedora Linux.

Отчет

This flaw doesn't affect any supported Red Hat product, as the kernel versions as shipped by Red Hat do not include the commit which introduced the security regression.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 10kernelNot affected
Red Hat Enterprise Linux 6kernelNot affected
Red Hat Enterprise Linux 7kernelNot affected
Red Hat Enterprise Linux 7kernel-rtNot affected
Red Hat Enterprise Linux 8kernelNot affected
Red Hat Enterprise Linux 8kernel-rtNot affected
Red Hat Enterprise Linux 9kernel-rtAffected
Red Hat OpenShift Container Platform 4rhcosNot affected
Red Hat Enterprise Linux 9kernelFixedRHSA-2025:696613.05.2025
Red Hat Enterprise Linux 9kernelFixedRHSA-2025:696613.05.2025

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=2345615kernel: Secure Boot does not automatically enable kernel lockdown

EPSS

Процентиль: 1%
0.00011
Низкий

7.7 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-1272

CVSS3: 7.7
ubuntu
около 1 месяца назад

The Linux Kernel lockdown mode for kernel versions starting on 6.12 and above for Fedora Linux has the lockdown mode disabled without any warning. This may allow an attacker to gain access to sensitive information such kernel memory mappings, I/O ports, BPF and kprobes. Additionally unsigned modules can be loaded, leading to execution of untrusted code breaking breaking any Secure Boot protection. This vulnerability affects only Fedora Linux.

nvd логотип

CVE-2025-1272

CVSS3: 7.7
nvd
около 1 месяца назад

The Linux Kernel lockdown mode for kernel versions starting on 6.12 and above for Fedora Linux has the lockdown mode disabled without any warning. This may allow an attacker to gain access to sensitive information such kernel memory mappings, I/O ports, BPF and kprobes. Additionally unsigned modules can be loaded, leading to execution of untrusted code breaking breaking any Secure Boot protection. This vulnerability affects only Fedora Linux.

debian логотип

CVE-2025-1272

CVSS3: 7.7
debian
около 1 месяца назад

The Linux Kernel lockdown mode for kernel versions starting on 6.12 an ...

github логотип

GHSA-xj75-gfvf-4g86

CVSS3: 7.7
github
около 1 месяца назад

The Linux Kernel lockdown mode for kernel versions starting on 6.12 and above for Fedora Linux has the lockdown mode disabled without any warning. This may allow an attacker to gain access to sensitive information such kernel memory mappings, I/O ports, BPF and kprobes. Additionally unsigned modules can be loaded, leading to execution of untrusted code breaking breaking any Secure Boot protection. This vulnerability affects only Fedora Linux.

oracle-oval логотип

ELSA-2025-6966

oracle-oval
10 месяцев назад

ELSA-2025-6966: kernel security update (MODERATE)

EPSS

Процентиль: 1%
0.00011
Низкий

7.7 High

CVSS3