DEBIAN-CVE-2025-40170
Advisory lineage Upstream: 1 Downstream: 1
Upstream
Downstream
Published: 12 Nov 2025, 11:15
Last modified:28 Apr 2026, 20:30
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
12 Nov 2025, 11:15
Published
Vulnerability first disclosed
28 Apr 2026, 20:30
Last Modified
Vulnerability information updated
Description
In the Linux kernel, the following vulnerability has been resolved: net: use dst_dev_rcu() in sk_setup_caps() Use RCU to protect accesses to dst->dev from sk_setup_caps() and sk_dst_gso_max_size(). Also use dst_dev_rcu() in ip6_dst_mtu_maybe_forward(), and ip_dst_mtu_maybe_forward(). ip4_dst_hoplimit() can use dst_dev_net_rcu().
Affected Systems
- debian•linux
all | all | all | < 6.12.69-1 | < 6.17.6-1