Security Advisory

CVE-2025-40158

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-12 10:23:29

Last updated 2026-05-11 21:43:51

Assigner Linux

State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ipv6: use RCU in ip6_output() Use RCU in ip6_output() in order to use dst_dev_rcu() to prevent possible UAF. We can remove rcu_read_lock()/rcu_read_unlock() pairs from ip6_finish_output2().

← Browse all CVEs View on cve.org ↗