CVE-2025-40080

CVE-2025-40080 affects the Linux kernel NBD subsystem, where sockets were restricted to TCP/UDP. The root cause was mitigated by a commit that verifies the socket type during setup and ensures the socket supports shutdown(), explicitly accepting TCP and UNIX stream sockets. Public advisories indi...

UBUNTU-CVE-2025-38236

In the Linux kernel, the following vulnerability has been resolved: afunix: Don't leave consecutive consumed OOB skbs. Jann Horn reported a use-after-free in unixstreamreadgeneric. The following sequences reproduce the issue: $ python3 from socket import s1, s2 = socketpairAFUNIX, SOCKSTREAM...