Description

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_rndis: Refactor bind path to use __free() After an bind/unbind cycle, the rndis->notify_req is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer dereference when accessing ep->ops->free_request. Refactor the error handling in the bind path to use the __free() automatic cleanup mechanism.

INFO

Published Date :

2025-10-30T09:48:03.276Z

Last Modified :

2025-10-30T09:48:03.276Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-40095 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-40095.

URL Resource
https://git.kernel.org/stable/c/08228941436047bdcd35a612c1aec0912a29d8cd cve-icon cve-icon
https://git.kernel.org/stable/c/380353c3a92be7d928e6f973bd065c5b79755ac3 cve-icon cve-icon
https://git.kernel.org/stable/c/5f65c8ad8c7292ed7e3716343fcd590a51818cc3 cve-icon cve-icon
https://git.kernel.org/stable/c/a8366263b7e5b663d7fb489d3a9ba1e2600049a6 cve-icon cve-icon
https://git.kernel.org/stable/c/ef81226bb1f8b6e761cd0b53d2696e9c1bc955d1 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025103016-CVE-2025-40095-fde5@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-40095 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-40095 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact