CVE-2025-40158

ADVISORY - nist

Summary

In the Linux kernel, the following vulnerability has been resolved:

ipv6: use RCU in ip6_output()

Use RCU in ip6_output() in order to use dst_dev_rcu() to prevent possible UAF.

We can remove rcu_read_lock()/rcu_read_unlock() pairs from ip6_finish_output2().

EPSS Score: 0.00193 (0.091)

Common Weakness Enumeration (CWE)

ADVISORY - nist
ADVISORY - redhat

Expired Pointer Dereference


Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.

Sign in