UBUNTU-CVE-2025-40019

Advisory lineage Upstream: 1 Downstream: 22
Upstream
CVE-2025-40019
Published: 24 Oct 2025, 12:15
Last modified:03 Jun 2026, 13:40

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

24 Oct 2025, 12:15
Published
Vulnerability first disclosed
03 Jun 2026, 13:40
Last Modified
Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: essiv - Check ssize for decryption and in-place encryption Move the ssize check to the start in essiv_aead_crypt so that it's also checked for decryption and in-place encryption.

Affected Systems

  • ubuntulinux

    all | all | all | < 5.4.0-225.245 | < 5.15.0-168.178 | < 6.8.0-94.96 | < 6.17.0-12.12

  • ubuntulinux-allwinner-5.19

    all

  • ubuntulinux-aws

    all | all | all | < 5.4.0-1154.164 | < 5.15.0-1099.106 | < 6.8.0-1045.47 | < 6.17.0-1006.6

  • ubuntulinux-aws-5.0

    all

  • ubuntulinux-aws-5.11

    all

  • ubuntulinux-aws-5.13

    all

  • ubuntulinux-aws-5.15

    all | < 5.15.0-1099.106~20.04.1

  • ubuntulinux-aws-5.19

    all

  • ubuntulinux-aws-5.3

    all

  • ubuntulinux-aws-5.4

    < 5.4.0-1154.164~18.04.1

  • ubuntulinux-aws-5.8

    all

  • ubuntulinux-aws-6.14

    all

  • ubuntulinux-aws-6.17

    < 6.17.0-1007.7~24.04.1

  • ubuntulinux-aws-6.2

    all

  • ubuntulinux-aws-6.5

    all

  • ubuntulinux-aws-6.8

    all | < 6.8.0-1045.47~22.04.1

  • ubuntulinux-aws-fips

    < 5.4.0-1154.164+fips1 | all | < 5.15.0-1099.106+fips1 | < 6.8.0-1045.47+fips1

  • ubuntulinux-azure

    all | all | all | all | all | < 5.4.0-1157.164 | < 5.15.0-1103.112 | < 6.8.0-1046.52 | < 6.17.0-1007.7

  • ubuntulinux-azure-5.11

    all

  • ubuntulinux-azure-5.13

    all

  • ubuntulinux-azure-5.15

    all | < 5.15.0-1103.112~20.04.1

  • ubuntulinux-azure-5.19

    all

  • ubuntulinux-azure-5.3

    all

  • ubuntulinux-azure-5.4

    all | < 5.4.0-1157.164~18.04.1

  • ubuntulinux-azure-5.8

    all

  • ubuntulinux-azure-6.11

    all

  • ubuntulinux-azure-6.14

    all

  • ubuntulinux-azure-6.2

    all

  • ubuntulinux-azure-6.5

    all

  • ubuntulinux-azure-6.8

    all | < 6.8.0-1051.57~22.04.1

  • ubuntulinux-azure-edge

    all

  • ubuntulinux-azure-fde

    all | all | all | all

  • ubuntulinux-azure-fde-5.19

    all

  • ubuntulinux-azure-fde-6.14

    all

  • ubuntulinux-azure-fde-6.17

    all

  • ubuntulinux-azure-fde-6.2

    all

  • ubuntulinux-azure-fde-6.8

    all

  • ubuntulinux-azure-fips

    < 5.4.0-1158.165+fips1 | all | < 5.15.0-1103.112+fips1 | < 6.8.0-1046.52+fips1

  • ubuntulinux-azure-nvidia

    all

  • ubuntulinux-azure-nvidia-6.14

    all

  • ubuntulinux-bluefield

    all | all | < 5.4.0-1116.123 | < 5.15.0-1083.85 | all

  • ubuntulinux-fips

    < 5.4.0-1128.138 | all | < 5.15.0-168.178+fips1 | < 6.8.0-94.96+fips1

  • ubuntulinux-gcp

    all | all | all | all | < 5.4.0-1157.166 | < 5.15.0-1099.108 | < 6.8.0-1046.49 | < 6.17.0-1006.6

  • ubuntulinux-gcp-5.11

    all

  • ubuntulinux-gcp-5.13

    all

  • ubuntulinux-gcp-5.15

    all | < 5.15.0-1099.108~20.04.1

  • ubuntulinux-gcp-5.19

    all

  • ubuntulinux-gcp-5.3

    all

  • ubuntulinux-gcp-5.4

    < 5.4.0-1157.166~18.04.1

  • ubuntulinux-gcp-5.8

    all

Showing first 50 affected entries in server-rendered view.

References (31)