CVE-2025-40133

UNKNOWN 0.0

mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable().

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable(). mptcp_active_enable() is called from subflow_finish_connect(), which is icsk->icsk_af_ops->sk_rx_dst_set() and it's not always under RCU. Using sk_dst_get(sk)->dev could trigger UAF. Let's use __sk_dst_get() and dst_dev_rcu().

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Nov 12, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

27069e7cb3d1cea9377069266acf19b9cc5ad0ae < ad16235c9d3ef7ec17c109ff39b7504f49d17072 27069e7cb3d1cea9377069266acf19b9cc5ad0ae < cc976ec9e38bb79409de3261ba1dbb6868e2a53e 27069e7cb3d1cea9377069266acf19b9cc5ad0ae < 893c49a78d9f85e4b8081b908fb7c407d018106a

Linux / Linux

6.12

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/ad16235c9d3ef7ec17c109ff39b7504f49d17072 git.kernel.org: https://git.kernel.org/stable/c/cc976ec9e38bb79409de3261ba1dbb6868e2a53e git.kernel.org: https://git.kernel.org/stable/c/893c49a78d9f85e4b8081b908fb7c407d018106a