← Zuruck zu CVEs
CVE-2025-40175
N/ABeschreibung
In the Linux kernel, the following vulnerability has been resolved: idpf: cleanup remaining SKBs in PTP flows When the driver requests Tx timestamp value, one of the first steps is to clone SKB using skb_get. It increases the reference counter for that SKB to prevent unexpected freeing by another component. However, there may be a case where the index is requested, SKB is assigned and never consumed by PTP flows - for example due to reset during running PTP apps. Add a check in release timestamping function to verify if the SKB assigned to Tx timestamp latch was freed, and release remaining SKBs.
CVE Details
CVSS v3.1 BewertungN/A
Veroffentlicht11/12/2025
Zuletzt geandert11/12/2025
Quellenvd
Honeypot-Sichtungen0
Referenzen
https://git.kernel.org/stable/c/2c84e91ef831d4fedb0b94670b3cfd1cc5f966a5(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/a3f8c0a273120fd2638f03403e786c3de2382e72(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.