7 matches found
ROOT-OS-UBUNTU-2204-CVE-2025-40149 CVE-2025-40149 in rootio-linux - Patched by Root
Root has patched CVE-2025-40149 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...
Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2026-1488)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1488 advisory. In the Linux kernel, the following vulnerability has been resolved: tls: Use skdstget and dstdevrcu in getnetdevforsock. CVE-2025-40149 In the Linux kernel, the following vulnerability has bee...
Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50133)
The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50133 advisory. - tls: Use skdstget and dstdevrcu in getnetdevforsock. Kuniyuki Iwashima Orabug: 39016219 CVE-2025-40149 Tenable has extracted the preceding...
CVE-2025-40149 affecting package kernel for versions less than 6.6.121.1-1
CVE-2025-40149 affecting package kernel for versions less than 6.6.121.1-1. A patched version of the package is available...
Unbreakable Enterprise kernel security update
6.12.0-107.59.3.4 - mptcp: fix a race in mptcppmdeladdtimer Eric Dumazet Orabug: 38932996 CVE-2025-40257 - tls: Use skdstget and dstdevrcu in getnetdevforsock. Kuniyuki Iwashima Orabug: 38932973 CVE-2025-40149 - mptcp: fix race condition in mptcpschedulework Eric Dumazet Orabug: 38932955...
AZL-70001 CVE-2025-40149 affecting package kernel for versions less than 6.6.121.1-1
In the Linux kernel, the following vulnerability has been resolved: tls: Use skdstget and dstdevrcu in getnetdevforsock. getnetdevforsock is called during setsockopt, so not under RCU. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and dstdevrcu. Note that the only -ndoskgetlowerdev...
CVE-2025-40149
In the Linux kernel, the following vulnerability has been resolved: tls: Use skdstget and dstdevrcu in getnetdevforsock. getnetdevforsock is called during setsockopt, so not under RCU. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and dstdevrcu. Note that the only -ndoskgetlowerdev...