CVE-2025-40187
Linux Kernel - Null Pointer Dereference in SCTP Disposition Handling
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() If new_asoc->peer.adaptation_ind=0 and sctp_ulpevent_make_authkey=0 and sctp_ulpevent_make_authkey() returns 0, then the variable ai_ev remains zero and the zero will be dereferenced in the sctp_ulpevent_free() function.
References (8)
Core 8
Core References
Scores
EPSS
0.0021
EPSS Percentile
10.8%
Details
Status
published
Products (25)
linux/Kernel
4.17.0 - 5.4.301linux
linux/Kernel
5.11.0 - 5.15.195linux
linux/Kernel
5.16.0 - 6.1.157linux
linux/Kernel
5.5.0 - 5.10.246linux
linux/Kernel
6.13.0 - 6.17.4linux
linux/Kernel
6.2.0 - 6.6.113linux
linux/Kernel
6.7.0 - 6.12.54linux
Linux/Linux
< 4.17
Linux/Linux
30f6ebf65bc46161c5aaff1db2e6e7c76aa4a06b - 025419f4e216a3ae0d0cec622262e98e8078c447
Linux/Linux
30f6ebf65bc46161c5aaff1db2e6e7c76aa4a06b - 1014b83778c8677f1d7a57c26dc728baa801ac62
... and 15 more
Published
Nov 12, 2025
Tracked Since
Feb 18, 2026