CVE-2025-40281

🗓️ 07 Dec 2025 21:55:38Reported by redhat.comType

redhatcve

redhatcve🔗 access.redhat.com

Linux kernel fixes shift out of bounds in sctp_transport_update_rto with runtime checks and read once annotations.

Reporter	Title	Published	Views	Family All 243
Tenable Nessus	Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2025-1350)	8 Jan 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2026-1430)	19 Feb 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2026-112 (ALASKERNEL-5.10-2026-112)	19 Feb 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2025-096 (ALASKERNEL-5.15-2025-096)	5 Jan 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2026-118 (ALASKERNEL-5.4-2026-118)	19 Feb 202600:00	–	nessus
Tenable Nessus	Debian dla-4404 : ata-modules-5.10.0-35-armmp-di - security update	12 Dec 202500:00	–	nessus
Tenable Nessus	Debian dla-4436 : linux-config-6.1 - security update	14 Jan 202600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP13 : kernel (EulerOS-SA-2026-1244)	10 Mar 202600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP13 : kernel (EulerOS-SA-2026-1280)	10 Mar 202600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP12 : kernel (EulerOS-SA-2026-1366)	16 Mar 202600:00	–	nessus

Source	Link
cve	www.cve.org/CVERecord
nvd	www.nvd.nist.gov/vuln/detail/CVE-2025-40281
lore	www.lore.kernel.org/linux-cve-announce/2025120718-CVE-2025-40281-557d@gregkh/T
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

22 Dec 2025 20:26Current

5.5Medium risk

Vulners AI Score5.5

CVSS 3.17

EPSS0.00117

linux kernel sctp transport update shift out of bounds runtime test read once annotations ubsan error