Description

In the Linux kernel, the following vulnerability has been resolved: tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock(). get_netdev_for_sock() is called during setsockopt(), so not under RCU. Using sk_dst_get(sk)->dev could trigger UAF. Let's use __sk_dst_get() and dst_dev_rcu(). Note that the only ->ndo_sk_get_lower_dev() user is bond_sk_get_lower_dev(), which uses RCU.

INFO

Published Date :

2025-11-12T10:23:27.122Z

Last Modified :

2026-02-06T16:31:28.370Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-40149 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-40149.

URL Resource
https://git.kernel.org/stable/c/13159c7125636371543a82cb7bbae00ab36730cc cve-icon cve-icon
https://git.kernel.org/stable/c/2b1bef126bbb8d0da51491357559126d567c1dee cve-icon cve-icon
https://git.kernel.org/stable/c/c65f27b9c3be2269918e1cbad6d8884741f835c5 cve-icon cve-icon
https://git.kernel.org/stable/c/e37ca0092ddace60833790b4ad7a390408fb1be9 cve-icon cve-icon
https://git.kernel.org/stable/c/f09cd209359a23f88d4f3fa3d2379d057027e53c cve-icon cve-icon
https://git.kernel.org/stable/c/feb474ddbf26b51f462ae2e60a12013bdcfc5407 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025111257-CVE-2025-40149-2c48@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-40149 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-40149 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact