DEBIAN-CVE-2025-21690

DEBIAN-CVE-2025-21690 PUBLISHED CVSS 5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Ratelimit warning logs to prevent VM denial of service If there's a persistent error in the hypervisor, the SCSI warning for failed I/O can flood the kernel log and max out CPU utilization, preventing troubleshooting from the VM side. Ratelimit the warning so it doesn't DoS the VM.

Risk Scores

CVSS v3.1

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

Vendor	Product	Versions
Debian:11	linux	6.12.27-1, 6.3.7-1, 6.3.7-1
Debian:12	linux	6.1.37-1, 0, 6.1.106-1
Debian:11	linux-6.1	6.1.106-3~deb11u1, 6.1.106-3, 6.1.112-1
Debian:14	linux	0, 0
Debian:13	linux	0, 0

Timeline

Feb 10, 2025 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2025-21690 advisory

Open in Interactive Console →