CVE-2025-40135
Advisory lineage Upstream: 0 Downstream: 24
Deferred
Published: 12 Nov 2025, 10:23
Last modified:11 May 2026, 21:43
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
0.04% LOW
0% probability +0.01%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
12 Nov 2025, 10:23
Published
Vulnerability first disclosed
11 May 2026, 21:43
Last Modified
Vulnerability information updated
Description
In the Linux kernel, the following vulnerability has been resolved: ipv6: use RCU in ip6_xmit() Use RCU in ip6_xmit() in order to use dst_dev_rcu() to prevent possible UAF.
EPSS Trends
Current EPSS score: 0.04%• Percentile: 12%
Affected Systems
- linux•linux
≥ 4a6ce2b6f2ecabbddcfe47e7cf61dd0f00b10e36, < f0a54d00d2f36de40266f47c27989853e8588656 | ≥ 4a6ce2b6f2ecabbddcfe47e7cf61dd0f00b10e36, < f69fec6287565fdeb61f65e700a1184352306943 | ≥ 4a6ce2b6f2ecabbddcfe47e7cf61dd0f00b10e36, < bd0905e2122e3680968cd0741966983490bf2ed3 | ≥ 4a6ce2b6f2ecabbddcfe47e7cf61dd0f00b10e36, < f7f9e924f23684b4b23cd9f976cceab24a968e34 | ≥ 4a6ce2b6f2ecabbddcfe47e7cf61dd0f00b10e36, < 9085e56501d93af9f2d7bd16f7fcfacdde47b99c | 4.13
References (5)
- https://git.kernel.org/stable/c/f7f9e924f23684b4b23cd9f976cceab24a968e34
- https://git.kernel.org/stable/c/9085e56501d93af9f2d7bd16f7fcfacdde47b99c
- https://git.kernel.org/stable/c/f0a54d00d2f36de40266f47c27989853e8588656
- https://git.kernel.org/stable/c/f69fec6287565fdeb61f65e700a1184352306943
- https://git.kernel.org/stable/c/bd0905e2122e3680968cd0741966983490bf2ed3