CVE-2025-40170

Vulnerability Description

In the Linux kernel, the following vulnerability has been resolved: net: use dst_dev_rcu() in sk_setup_caps() Use RCU to protect accesses to dst->dev from sk_setup_caps() and sk_dst_gso_max_size(). Also use dst_dev_rcu() in ip6_dst_mtu_maybe_forward(), and ip_dst_mtu_maybe_forward(). ip4_dst_hoplimit() can use dst_dev_net_rcu().

References

https://git.kernel.org/stable/c/5d1be493d1110c9e720b4c51a6e587bb2fb4ac12
https://git.kernel.org/stable/c/99a2ace61b211b0be861b07fbaa062fca4b58879
https://git.kernel.org/stable/c/a805729c0091073d8f0415cfa96c7acd1bc17a48

FAQ

What is CVE-2025-40170?

CVE-2025-40170 is a documented vulnerability. In the Linux kernel, the following vulnerability has been resolved: net: use dst_dev_rcu() in sk_setup_caps() Use RCU to protect accesses to dst->dev from sk_setup_caps() and sk_dst_gso_max_size(). ...

How severe is CVE-2025-40170?

CVSS scoring is not yet available for CVE-2025-40170. Check NVD for updates.

Is there a patch for CVE-2025-40170?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.