Lucene search
K

7 matches found

OSV
OSV
added 3 days ago4 views

ROOT-OS-UBUNTU-2204-CVE-2025-40149 CVE-2025-40149 in rootio-linux - Patched by Root

Root has patched CVE-2025-40149 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

7.8CVSS5.4AI score0.00142EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/30 12:0 a.m.15 views

Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2026-1488)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1488 advisory. In the Linux kernel, the following vulnerability has been resolved: tls: Use skdstget and dstdevrcu in getnetdevforsock. CVE-2025-40149 In the Linux kernel, the following vulnerability has bee...

9.8CVSS6.2AI score0.00395EPSS
Exploits0References48
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.28 views

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50133)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50133 advisory. - tls: Use skdstget and dstdevrcu in getnetdevforsock. Kuniyuki Iwashima Orabug: 39016219 CVE-2025-40149 Tenable has extracted the preceding...

7.8CVSS5.9AI score0.00179EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2026/02/09 11:37 p.m.7 views

CVE-2025-40149 affecting package kernel for versions less than 6.6.121.1-1

CVE-2025-40149 affecting package kernel for versions less than 6.6.121.1-1. A patched version of the package is available...

7.8CVSS5.5AI score0.00142EPSS
Exploits0
Oracle linux
Oracle linux
added 2026/02/06 12:0 a.m.8 views

Unbreakable Enterprise kernel security update

6.12.0-107.59.3.4 - mptcp: fix a race in mptcppmdeladdtimer Eric Dumazet Orabug: 38932996 CVE-2025-40257 - tls: Use skdstget and dstdevrcu in getnetdevforsock. Kuniyuki Iwashima Orabug: 38932973 CVE-2025-40149 - mptcp: fix race condition in mptcpschedulework Eric Dumazet Orabug: 38932955...

5.3AI score0.00171EPSS
Exploits0
OSV
OSV
added 2025/11/12 11:15 a.m.12 views

AZL-70001 CVE-2025-40149 affecting package kernel for versions less than 6.6.121.1-1

In the Linux kernel, the following vulnerability has been resolved: tls: Use skdstget and dstdevrcu in getnetdevforsock. getnetdevforsock is called during setsockopt, so not under RCU. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and dstdevrcu. Note that the only -ndoskgetlowerdev...

7.8CVSS5.8AI score0.00142EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/11/12 10:23 a.m.10 views

CVE-2025-40149

In the Linux kernel, the following vulnerability has been resolved: tls: Use skdstget and dstdevrcu in getnetdevforsock. getnetdevforsock is called during setsockopt, so not under RCU. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and dstdevrcu. Note that the only -ndoskgetlowerdev...

7.8CVSS5.4AI score0.00142EPSS
Exploits0
Rows per page
Query Builder