CVE-2025-40307

🗓️ 10 Dec 2025 10:42:36Reported by redhat.comType

redhatcve

redhatcve🔗 access.redhat.com👁 8 Views

Linux kernel exfat fix validates allocation bitmap clusters and adds test to ensure in-use bits.

Reporter	Title	Published	Views	Family All 209
Tenable Nessus	Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2026-1495)	30 Mar 202600:00	–	nessus
Tenable Nessus	openSUSE 16 Security Update : kernel (openSUSE-SU-2026:20145-1)	4 Feb 202600:00	–	nessus
Tenable Nessus	Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50006)	14 Jan 202600:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : kernel (SUSE-SU-2026:0278-1)	24 Jan 202600:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : kernel (SUSE-SU-2026:0281-1)	27 Jan 202600:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2026:0315-1)	30 Jan 202600:00	–	nessus
Tenable Nessus	SUSE SLES16 Security Update : kernel (SUSE-SU-2026:20220-1)	6 Feb 202600:00	–	nessus
Tenable Nessus	SUSE SLES16 Security Update : kernel (SUSE-SU-2026:20228-1)	6 Feb 202600:00	–	nessus
Tenable Nessus	Ubuntu 25.10 : Linux kernel vulnerabilities (USN-8029-1)	13 Feb 202600:00	–	nessus
Tenable Nessus	Ubuntu 25.10 : Linux kernel (GCP) vulnerabilities (USN-8030-1)	13 Feb 202600:00	–	nessus

Source	Link
cve	www.cve.org/CVERecord
nvd	www.nvd.nist.gov/vuln/detail/CVE-2025-40307
lore	www.lore.kernel.org/linux-cve-announce/2025120820-CVE-2025-40307-40f1@gregkh/T
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

10 Dec 2025 11:34Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.17

EPSS0.00024

exfat linux kernel allocation bitmap cluster validation mkdir fix bitmap test