CVE-2025-40047

Advisory lineage Upstream: 0 Downstream: 30

Downstream

DEBIAN-CVE-2025-40047 OPENSUSE-SU-2025:15702-1 OPENSUSE-SU-2025:20172-1 OPENSUSE-SU-2026:10301-1 RHSA-2025:21469 RHSA-2025:21933

Deferred

Published: 28 Oct 2025, 11:48

Last modified:11 May 2026, 21:41

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

0.02% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

28 Oct 2025, 11:48

Published

Vulnerability first disclosed

11 May 2026, 21:41

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: io_uring/waitid: always prune wait queue entry in io_waitid_wait() For a successful return, always remove our entry from the wait queue entry list. Previously this was skipped if a cancelation was in progress, but this can race with another invocation of the wait queue entry callback.

EPSS Trends

Current EPSS score: 0.02%• Percentile: 7%

Affected Systems

linux•linux
≥ f31ecf671ddc498f20219453395794ff2383e06b, < 696ba6032081e617564a8113a001b8d7943cb928 | ≥ f31ecf671ddc498f20219453395794ff2383e06b, < 3e2205db2f0608898d535da1964e1b376aacfdaa | ≥ f31ecf671ddc498f20219453395794ff2383e06b, < 2f8229d53d984c6a05b71ac9e9583d4354e3b91f | 6.7