CVE-2025-39851 | Linux Kernel up to 6.12.45/6.16.5/6.17-rc4 vxlan first_remote_rcu null pointer dereference

A vulnerability described as critical has been identified in Linux Kernel up to 6.12.45/6.16.5/6.17-rc4. This affects the function first_remote_rcu of the component vxlan. Executing manipulation can lead to null pointer dereference.

This vulnerability is handled as CVE-2025-39851. The attack can only be done within the local network. There is not any exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More