CVE-2025-40123 — Type Confusion in Linux

CWE-843 — Type Confusion32 documents6 sources

Severity

3.2LOWOSV

No vector

EPSS

0.0%

top 91.31%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux +1 more

Timeline

PublishedNov 12

Latest updateApr 9

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Enforce expected_attach_type for tailcall compatibility Yinhao et al. recently reported: Our fuzzer tool discovered an uninitialized pointer issue in the bpf_prog_test_run_xdp() function within the Linux kernel's BPF subsystem. This leads to a NULL pointer dereference when a BPF program attempts to deference the txq member of struct xdp_buff object. The test initializes two programs of BPF_PROG_TYPE_XDP: progA acts as t…

Affected Packages6 packages

▶Linuxlinux/linux_kernel4.17.0 — 6.1.156+3

▶Debianlinux/linux_kernel< 6.1.158-1+2

▶Ubuntulinux/linux_kernel< 6.8.0-106.106+1

▶CVEListV5linux/linux5e43f899b03a3492ce5fc44e8900becb04dae9c0 — a99de19128aec0913f3d529f529fbbff5edfaff8+5

▶debiandebian/linux< linux 6.1.158-1 (bookworm)

🔴Vulnerability Details

OSV

linux-raspi, linux-raspi-realtime vulnerabilities↗2026-04-01

▶

OSV

linux-azure-6.8 vulnerabilities↗2026-03-25

▶

OSV

linux-azure vulnerabilities↗2026-03-25

▶

OSV

linux-aws-6.8 vulnerabilities↗2026-03-23

▶

OSV

linux-realtime, linux-realtime-6.8 vulnerabilities↗2026-03-17

▶

📋Vendor Advisories

Ubuntu

Linux kernel (Azure FIPS) vulnerabilities↗2026-04-09

▶

Ubuntu

Linux kernel (Raspberry Pi) vulnerabilities↗2026-04-01

▶

Ubuntu

Linux kernel (Azure) vulnerabilities↗2026-03-25

▶

Ubuntu

Linux kernel (Azure) vulnerabilities↗2026-03-25

▶

Ubuntu

Linux kernel (AWS) vulnerabilities↗2026-03-23

▶