Description

In the Linux kernel, the following vulnerability has been resolved: net: dlink: handle copy_thresh allocation failure The driver did not handle failure of `netdev_alloc_skb_ip_align()`. If the allocation failed, dereferencing `skb->protocol` could lead to a NULL pointer dereference. This patch tries to allocate `skb`. If the allocation fails, it falls back to the normal path. Tested-on: D-Link DGE-550T Rev-A3

INFO

Published Date :

2025-10-28T11:48:28.444Z

Last Modified :

2025-10-29T13:19:52.908Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-40053 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-40053.

URL Resource
https://git.kernel.org/stable/c/5aa9b885602811a026a3f45c92ea2b4b04c54f09 cve-icon cve-icon
https://git.kernel.org/stable/c/7ed5010fef0930f4322d620052edc854ef3ec41f cve-icon cve-icon
https://git.kernel.org/stable/c/8169a6011c5fecc6cb1c3654c541c567d3318de8 cve-icon cve-icon
https://git.kernel.org/stable/c/84fd710a704f3d53d4120e452e86cea558cf73a8 cve-icon cve-icon
https://git.kernel.org/stable/c/9d49e4b14609e1a20d931e718962c4b6b5485174 cve-icon cve-icon
https://git.kernel.org/stable/c/ea87151df398d407a632c7bf63013290f01c5009 cve-icon cve-icon
https://git.kernel.org/stable/c/fd7b6b2c920d7fd370a612be416a904d6e1ebe55 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025102814-CVE-2025-40053-8e42@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-40053 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-40053 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact