CVE-2025-40018Use After Free in Linux

CWE-416Use After Free76 documents7 sources
Severity
7.8HIGHOSV
OSV7.1OSV5.5OSV3.2
No vector
EPSS
0.1%
top 81.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
LinuxLinux KernelDebian Linux+2 more
Timeline
PublishedOct 24
Latest updateJan 12

Description

In the Linux kernel, the following vulnerability has been resolved: ipvs: Defer ip_vs_ftp unregister during netns cleanup On the netns cleanup path, __ip_vs_ftp_exit() may unregister ip_vs_ftp before connections with valid cp->app pointers are flushed, leading to a use-after-free. Fix this by introducing a global `exiting_module` flag, set to true in ip_vs_ftp_exit() before unregistering the pernet subsystem. In __ip_vs_ftp_exit(), skip ip_vs_ftp unregister if called during netns cleanup (whe

Affected Packages7 packages

Linuxlinux/linux_kernel2.6.395.4.301+6
Debianlinux/linux_kernel< 5.10.247-1+3
Ubuntulinux/linux_kernel< 5.15.0-164.174+5
CVEListV5linux/linux61b1ab4583e275af216c8454b9256de680499b198a6ecab3847c213ce2855b0378e63ce839085de3+8

🔴Vulnerability Details

38
OSV
linux-iot vulnerabilities2026-01-12
OSV
linux-azure-nvidia vulnerabilities2026-01-09
OSV
linux-kvm vulnerabilities2026-01-09
OSV
linux-raspi, linux-raspi-realtime vulnerabilities2026-01-09
OSV
linux-raspi, linux-raspi-5.4 vulnerabilities2026-01-06

📋Vendor Advisories

37
Ubuntu
Linux kernel (IoT) vulnerabilities2026-01-12
Ubuntu
Linux kernel (Azure, N-Series) vulnerabilities2026-01-09
Ubuntu
Linux kernel (KVM) vulnerabilities2026-01-09
Ubuntu
Linux kernel (Raspberry Pi) vulnerabilities2026-01-09
Ubuntu
Linux kernel (Raspberry Pi) vulnerabilities2026-01-06
CVE-2025-40018 — Use After Free in Linux | cvebase