CVE-2025-40075
Linux Kernel - Use-After-Free in tcp_metrics via dst_dev() Helper
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: tcp_metrics: use dst_dev_net_rcu() Replace three dst_dev() with a lockdep enabled helper.
References (3)
Core 3
Scores
EPSS
0.0018
EPSS Percentile
7.8%
Details
Status
published
Products (10)
linux/Kernel
4.13.0 - 6.12.63linux
linux/Kernel
6.13.0 - 6.17.3linux
Linux/Linux
< 4.13
Linux/Linux
4.13
Linux/Linux
4a6ce2b6f2ecabbddcfe47e7cf61dd0f00b10e36 - 07613a95326ebad2d1b88d883cd72546025a4f3e
Linux/Linux
4a6ce2b6f2ecabbddcfe47e7cf61dd0f00b10e36 - 4b89397807eb04986427c4786d065e9442834ad4
Linux/Linux
4a6ce2b6f2ecabbddcfe47e7cf61dd0f00b10e36 - 50c127a69cd6285300931853b352a1918cfa180f
Linux/Linux
6.12.63 - 6.12.*
Linux/Linux
6.17.3 - 6.17.*
Linux/Linux
6.18
Published
Oct 28, 2025
Tracked Since
Feb 18, 2026