CVE-2025-40051

Linux Kernel 6.0.0-6.1.155, 6.2.0-6.6.111, 6.7.0-6.12.52, 6.13.0-6.17.2 - Use-After-Free in vhost vringh

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: vhost: vringh: Modify the return value check The return value of copy_from_iter and copy_to_iter can't be negative, check whether the copied lengths are equal.

Scores

EPSS 0.0020
EPSS Percentile 9.6%

Details

Status published
Products (16)
linux/Kernel 6.0.0 - 6.1.156linux
linux/Kernel 6.13.0 - 6.17.3linux
linux/Kernel 6.2.0 - 6.6.112linux
linux/Kernel 6.7.0 - 6.12.53linux
Linux/Linux < 6.0
Linux/Linux 309bba39c945ac8ab8083ac05cd6cfe5822968e0 - 78dc7362662fedaa1928fb8e4f27401c8322905d
Linux/Linux 309bba39c945ac8ab8083ac05cd6cfe5822968e0 - 82a8d0fda55b35361ee7f35b54fa2b66d7847d2b
Linux/Linux 309bba39c945ac8ab8083ac05cd6cfe5822968e0 - baa37b1c7e29546f79c39bef0d18c4edc9f39bb1
Linux/Linux 309bba39c945ac8ab8083ac05cd6cfe5822968e0 - cfa0654402c06d086201a9ff167eb95da5844fc3
Linux/Linux 309bba39c945ac8ab8083ac05cd6cfe5822968e0 - db042925a5ab7a550b710addeadbf6f72e3a8a4b
... and 6 more
Published Oct 28, 2025
Tracked Since Feb 18, 2026