CVE-2025-40079 — Linux vulnerability

33 documents7 sources

Severity

3.2LOWOSV

No vector

EPSS

0.0%

top 93.65%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux +1 more

Timeline

PublishedOct 28

Latest updateApr 9

Description

In the Linux kernel, the following vulnerability has been resolved: riscv, bpf: Sign extend struct ops return values properly The ns_bpf_qdisc selftest triggers a kernel panic: Unable to handle kernel paging request at virtual address ffffffffa38dbf58 Current test_progs pgtable: 4K pagesize, 57-bit VAs, pgdp=0x00000001109cc000 [ffffffffa38dbf58] pgd=000000011fffd801, p4d=000000011fffd401, pud=000000011fffd001, pmd=0000000000000000 Oops [#1] Modules linked in: bpf_testmod(OE) xt_conntrack nls_…

Affected Packages6 packages

▶Linuxlinux/linux_kernel6.6.0 — 6.12.53+1

▶Debianlinux/linux_kernel< 6.12.57-1+1

▶Ubuntulinux/linux_kernel< 6.8.0-106.106+1

▶msrcmsrc/azl3_kernel_6.6.104.2-4_on_azure_linux_3.0

▶CVEListV5linux/linux25ad10658dc1068a671553ff10e19a812c2a3783 — 92751937f12a7d34ad492577a251c94a55e97e72+3

🔴Vulnerability Details

OSV

linux-raspi, linux-raspi-realtime vulnerabilities↗2026-04-01

▶

OSV

linux-azure-6.8 vulnerabilities↗2026-03-25

▶

OSV

linux-azure vulnerabilities↗2026-03-25

▶

OSV

linux-aws-6.8 vulnerabilities↗2026-03-23

▶

OSV

linux-realtime, linux-realtime-6.8 vulnerabilities↗2026-03-17

▶

📋Vendor Advisories

Ubuntu

Linux kernel (Azure FIPS) vulnerabilities↗2026-04-09

▶

Ubuntu

Linux kernel (Raspberry Pi) vulnerabilities↗2026-04-01

▶

Ubuntu

Linux kernel (Azure) vulnerabilities↗2026-03-25

▶

Ubuntu

Linux kernel (Azure) vulnerabilities↗2026-03-25

▶

Ubuntu

Linux kernel (AWS) vulnerabilities↗2026-03-23

▶