CVE-2025-40281

🗓️ 06 Dec 2025 21:51:05Reported by LinuxType

CVE-2025-40281 fixes a shift-out-of-bounds in sctp_transport_update_rto by runtime tests and READ_ONCE annotations.

Reporter	Title	Published	Views	Family All 243
Tenable Nessus	Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2025-1350)	8 Jan 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2026-1430)	19 Feb 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2026-112 (ALASKERNEL-5.10-2026-112)	19 Feb 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2025-096 (ALASKERNEL-5.15-2025-096)	5 Jan 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2026-118 (ALASKERNEL-5.4-2026-118)	19 Feb 202600:00	–	nessus
Tenable Nessus	Debian dla-4404 : ata-modules-5.10.0-35-armmp-di - security update	12 Dec 202500:00	–	nessus
Tenable Nessus	Debian dla-4436 : linux-config-6.1 - security update	14 Jan 202600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP13 : kernel (EulerOS-SA-2026-1244)	10 Mar 202600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP13 : kernel (EulerOS-SA-2026-1280)	10 Mar 202600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP12 : kernel (EulerOS-SA-2026-1366)	16 Mar 202600:00	–	nessus

Vulners

CNA

Node

linux linux_kernelRange3.16–5.4.302

linux linux_kernelRange5.5.0–5.10.247

linux linux_kernelRange5.11.0–5.15.197

linux linux_kernelRange5.16.0–6.1.159

linux linux_kernelRange6.2.0–6.6.117

linux linux_kernelRange6.7.0–6.12.59

linux linux_kernelRange6.13.0–6.17.9

linux linux_kernelRange6.18.0≥

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/sctp/transport.c"
    ],
    "versions": [
      {
        "version": "b58537a1f5629bdc98a8b9dc2051ce0e952f6b4b",
        "lessThan": "0e0413e3315199b23ff4aec295e256034cd0a6e4",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b58537a1f5629bdc98a8b9dc2051ce0e952f6b4b",
        "lessThan": "834e65be429c0fa4f9bb5945064bd57f18ed2187",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b58537a1f5629bdc98a8b9dc2051ce0e952f6b4b",
        "lessThan": "abb086b9a95d0ed3b757ee59964ba3c4e4b2fc1a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b58537a1f5629bdc98a8b9dc2051ce0e952f6b4b",
        "lessThan": "d0d858652834dcf531342c82a0428170aa7c2675",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b58537a1f5629bdc98a8b9dc2051ce0e952f6b4b",
        "lessThan": "ed71f801249d2350c77a73dca2c03918a15a62fe",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b58537a1f5629bdc98a8b9dc2051ce0e952f6b4b",
        "lessThan": "1cfa4eac275cc4875755c1303d48a4ddfe507ca8",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b58537a1f5629bdc98a8b9dc2051ce0e952f6b4b",
        "lessThan": "aaba523dd7b6106526c24b1fd9b5fc35e5aaa88d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b58537a1f5629bdc98a8b9dc2051ce0e952f6b4b",
        "lessThan": "1534ff77757e44bcc4b98d0196bc5c0052fce5fa",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/sctp/transport.c"
    ],
    "versions": [
      {
        "version": "3.16",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "3.16",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.4.302",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.10.247",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.197",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.159",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.117",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.59",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.17.9",
        "lessThanOrEqual": "6.17.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/1534ff77757e44bcc4b98d0196bc5c0052fce5fa
git	www.git.kernel.org/stable/c/d0d858652834dcf531342c82a0428170aa7c2675
git	www.git.kernel.org/stable/c/0e0413e3315199b23ff4aec295e256034cd0a6e4
git	www.git.kernel.org/stable/c/abb086b9a95d0ed3b757ee59964ba3c4e4b2fc1a
git	www.git.kernel.org/stable/c/834e65be429c0fa4f9bb5945064bd57f18ed2187
git	www.git.kernel.org/stable/c/ed71f801249d2350c77a73dca2c03918a15a62fe
git	www.git.kernel.org/stable/c/1cfa4eac275cc4875755c1303d48a4ddfe507ca8
git	www.git.kernel.org/stable/c/aaba523dd7b6106526c24b1fd9b5fc35e5aaa88d
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-253495.html

02 Jun 2026 14:16Current

6Medium risk

Vulners AI Score6

EPSS0.00117