Description

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing port_state and rport state nvme_fc_unregister_remote removes the remote port on a lport object at any point in time when there is no active association. This races with with the reconnect logic, because nvme_fc_create_association is not taking a lock to check the port_state and atomically increase the active count on the rport.

INFO

Published Date :

2025-12-09T04:09:59.673Z

Last Modified :

2025-12-09T04:09:59.673Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-40342 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-40342.

URL Resource
https://git.kernel.org/stable/c/25f4bf1f7979a7871974fd36c79d69ff1cf4b446 cve-icon cve-icon
https://git.kernel.org/stable/c/4253e0a4546138a2bf9cb6acf66b32fee677fc7c cve-icon cve-icon
https://git.kernel.org/stable/c/891cdbb162ccdb079cd5228ae43bdeebce8597ad cve-icon cve-icon
https://git.kernel.org/stable/c/9950af4303942081dc8c7a5fdc3688c17c7eb6c0 cve-icon cve-icon
https://git.kernel.org/stable/c/a2f7fa75c4a2a07328fa22ccbef461db76790b55 cve-icon cve-icon
https://git.kernel.org/stable/c/de3d91af47bc015031e7721b100a29989f6498a5 cve-icon cve-icon
https://git.kernel.org/stable/c/e8cde03de8674b05f2c5e0870729049eba517800 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025120912-CVE-2025-40342-a237@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-40342 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-40342 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact