CVE-2025-40099

Advisory lineage Upstream: 0 Downstream: 34

Downstream

DEBIAN-CVE-2025-40099 DLA-4379-1 DSA-6053-1 MGASA-2025-0309 MGASA-2025-0310 OPENSUSE-SU-2025:15702-1

Deferred

Published: 30 Oct 2025, 09:48

Last modified:11 May 2026, 21:42

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

0.06% LOW

0% probability +0.03%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

30 Oct 2025, 09:48

Published

Vulnerability first disclosed

11 May 2026, 21:42

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: cifs: parse_dfs_referrals: prevent oob on malformed input Malicious SMB server can send invalid reply to FSCTL_DFS_GET_REFERRALS - reply smaller than sizeof(struct get_dfs_referral_rsp) - reply with number of referrals smaller than NumberOfReferrals in the header Processing of such replies will cause oob. Return -EINVAL error on such replies to prevent oob-s.

EPSS Trends

Current EPSS score: 0.06%• Percentile: 20%

Affected Systems

linux•linux
≥ 4ecce920e13ace16a5ba45efe8909946c28fb2ad, < cfacc7441f760e4a73cc71b6ff1635261d534657 | ≥ 4ecce920e13ace16a5ba45efe8909946c28fb2ad, < 15c73964da9df994302f579ed14ee5fdbce7a332 | ≥ 4ecce920e13ace16a5ba45efe8909946c28fb2ad, < 8bc4a8d39bac23d8b044fd3e2dbfd965f1d9b058 | ≥ 4ecce920e13ace16a5ba45efe8909946c28fb2ad, < bb0f2e66e1ac043a5b238f5bcab4f26f3c317039 | ≥ 4ecce920e13ace16a5ba45efe8909946c28fb2ad, < 6447b0e355562a1ff748c4a2ffb89aae7e84d2c9 | 4.11