CVE-2025-40357 — Linux vulnerability

17 documents8 sources

Severity

5.5MEDIUM

No vector

EPSS

0.0%

top 90.90%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 16

Latest updateFeb 24

Description

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix general protection fault in __smc_diag_dump The syzbot report a crash: Oops: general protection fault, probably for non-canonical address 0xfbd5a5d5a0000003: 0000 [#1] SMP KASAN NOPTI KASAN: maybe wild-memory-access in range [0xdead4ead00000018-0xdead4ead0000001f] CPU: 1 UID: 0 PID: 6949 Comm: syz.0.335 Not tainted syzkaller #0 PREEMPT(full) Hardware name: Google Compute Engine/Google Compute Engine, BIOS Google …

Affected Packages5 packages

▶Linuxlinux/linux_kernel6.11.0 — 6.12.56+1

▶Debianlinux/linux_kernel< 6.12.57-1+1

▶Ubuntulinux/linux_kernel< 6.17.0-14.14

▶CVEListV5linux/linuxd25a92ccae6bed02327b63d138e12e7806830f78 — 5b6fc95c4a161326567bdf12a333768565b638f2+3

▶debiandebian/linux< linux 6.17.6-1 (forky)

🔴Vulnerability Details

OSV

linux-azure vulnerabilities↗2026-02-24

▶

OSV

linux-oem-6.17 vulnerabilities↗2026-02-17

▶

OSV

linux-aws, linux-oracle vulnerabilities↗2026-02-17

▶

OSV

linux-gcp vulnerabilities↗2026-02-12

▶

OSV

linux, linux-raspi, linux-realtime vulnerabilities↗2026-02-12

▶

📋Vendor Advisories

Ubuntu

Linux kernel (Azure) vulnerabilities↗2026-02-24

▶

Ubuntu

Linux kernel (OEM) vulnerabilities↗2026-02-17

▶

Ubuntu

Linux kernel (GCP) vulnerabilities↗2026-02-12

▶

Ubuntu

Linux kernel vulnerabilities↗2026-02-12

▶

Red Hat

kernel: net/smc: fix general protection fault in __smc_diag_dump↗2025-12-16

▶

🕵️Threat Intelligence

Wiz

CVE-2025-40357 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶

💬Community

Bugzilla

CVE-2025-40357 kernel: net/smc: fix general protection fault in __smc_diag_dump↗2025-12-16

▶