CVE-2025-40176
tls: wait for pending async decryptions if tls_strp_msg_hold fails
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
In the Linux kernel, the following vulnerability has been resolved: tls: wait for pending async decryptions if tls_strp_msg_hold fails Async decryption calls tls_strp_msg_hold to create a clone of the input skb to hold references to the memory it uses. If we fail to allocate that clone, proceeding with async decryption can lead to various issues (UAF on the skb, writing into userspace memory after the recv() call has returned). In this case, wait for all pending decryption requests.
| Vendor | linux |
| Product | linux |
| Ecosystems | |
| Industries | Technology |
| Published | Nov 12, 2025 |
| Last Updated | May 11, 2026 |
Stay Ahead of the Next One
Get instant alerts for linux linux
Be the first to know when new unknown vulnerabilities affecting linux linux are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Linux / Linux
84c61fe1a75b4255df1e1e7c054c9e6d048da417 < 9f83fd0c179e0f458e824e417f9d5ad53443f685 84c61fe1a75b4255df1e1e7c054c9e6d048da417 < c61d4368197d65c4809d9271f3b85325a600586a 84c61fe1a75b4255df1e1e7c054c9e6d048da417 < 39dec4ea3daf77f684308576baf483b55ca7f160 84c61fe1a75b4255df1e1e7c054c9e6d048da417 < 4fc109d0ab196bd943b7451276690fb6bb48c2e0 84c61fe1a75b4255df1e1e7c054c9e6d048da417 < b8a6ff84abbcbbc445463de58704686011edc8e1
Linux / Linux
6.0
References
git.kernel.org: https://git.kernel.org/stable/c/9f83fd0c179e0f458e824e417f9d5ad53443f685 git.kernel.org: https://git.kernel.org/stable/c/c61d4368197d65c4809d9271f3b85325a600586a git.kernel.org: https://git.kernel.org/stable/c/39dec4ea3daf77f684308576baf483b55ca7f160 git.kernel.org: https://git.kernel.org/stable/c/4fc109d0ab196bd943b7451276690fb6bb48c2e0 git.kernel.org: https://git.kernel.org/stable/c/b8a6ff84abbcbbc445463de58704686011edc8e1