DEBIAN-CVE-2025-40018

Advisory lineage Upstream: 1 Downstream: 2
Upstream
CVE-2025-40018
Published: 24 Oct 2025, 12:15
Last modified:28 Apr 2026, 20:30

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

24 Oct 2025, 12:15
Published
Vulnerability first disclosed
28 Apr 2026, 20:30
Last Modified
Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: ipvs: Defer ip_vs_ftp unregister during netns cleanup On the netns cleanup path, __ip_vs_ftp_exit() may unregister ip_vs_ftp before connections with valid cp->app pointers are flushed, leading to a use-after-free. Fix this by introducing a global `exiting_module` flag, set to true in ip_vs_ftp_exit() before unregistering the pernet subsystem. In __ip_vs_ftp_exit(), skip ip_vs_ftp unregister if called during netns cleanup (when exiting_module is false) and defer it to __ip_vs_cleanup_batch(), which unregisters all apps after all connections are flushed. If called during module exit, unregister ip_vs_ftp immediately.

Affected Systems

  • debianlinux

    < 5.10.247-1 | < 6.1.158-1 | < 6.12.57-1 | < 6.17.6-1

  • debianlinux-6.1

    < 6.1.158-1~deb11u1

References (1)