CVE-2025-40075

Linux Kernel - Use-After-Free in tcp_metrics via dst_dev() Helper

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: tcp_metrics: use dst_dev_net_rcu() Replace three dst_dev() with a lockdep enabled helper.

Scores

EPSS 0.0018
EPSS Percentile 7.8%

Details

Status published
Products (10)
linux/Kernel 4.13.0 - 6.12.63linux
linux/Kernel 6.13.0 - 6.17.3linux
Linux/Linux < 4.13
Linux/Linux 4.13
Linux/Linux 4a6ce2b6f2ecabbddcfe47e7cf61dd0f00b10e36 - 07613a95326ebad2d1b88d883cd72546025a4f3e
Linux/Linux 4a6ce2b6f2ecabbddcfe47e7cf61dd0f00b10e36 - 4b89397807eb04986427c4786d065e9442834ad4
Linux/Linux 4a6ce2b6f2ecabbddcfe47e7cf61dd0f00b10e36 - 50c127a69cd6285300931853b352a1918cfa180f
Linux/Linux 6.12.63 - 6.12.*
Linux/Linux 6.17.3 - 6.17.*
Linux/Linux 6.18
Published Oct 28, 2025
Tracked Since Feb 18, 2026