CVE-2025-39673

Public on 2025-09-05

Modified on 2025-09-09

Description

In the Linux kernel, the following vulnerability has been resolved:

ppp: fix race conditions in ppp_fill_forward_path

Severity

Important

See what this means

CVSS v3 Base Score

7.0

See breakdown

Affected Packages

Platform	Package	Release Date	Advisory	Status
Amazon Linux 1	kernel			Not Affected
Amazon Linux 2 - Core	kernel			Not Affected
Amazon Linux 2 - Kernel-5.10 Extra	kernel			Not Affected
Amazon Linux 2 - Kernel-5.15 Extra	kernel			Not Affected
Amazon Linux 2 - Kernel-5.4 Extra	kernel			Not Affected
Amazon Linux 2023	kernel	2025-09-15	ALAS2023-2025-1186	Fixed
Amazon Linux 2023	kernel-livepatch-6.1.141-165.249	2025-09-23	ALAS2023LIVEPATCH-2025-089	Fixed
Amazon Linux 2023	kernel-livepatch-6.1.141-167.250	2025-09-23	ALAS2023LIVEPATCH-2025-090	Fixed
Amazon Linux 2023	kernel-livepatch-6.1.144-170.251	2025-09-23	ALAS2023LIVEPATCH-2025-086	Fixed
Amazon Linux 2023	kernel-livepatch-6.1.147-172.259	2025-09-23	ALAS2023LIVEPATCH-2025-085	Fixed
Amazon Linux 2023	kernel6.12			Not Affected

CVSS Scores

	Score Type	Score	Vector
Amazon Linux	CVSSv3	7.0	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

References

FAQs regarding Amazon Linux ALAS/CVE Severity Red Hat: CVE-2025-39673 Mitre: CVE-2025-39673