PT-2025-44385 · Linux+3 · Linux Kernel+3

Publicado

2025-09-17

Atualizado

2026-05-26

CVE-2025-40095

CVSS v2.0

4.6

Média

Vetor

AV:L/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s USB gadget functionality, specifically within the f rndis component. After a bind/unbind cycle, the rndis->notify req pointer can become stale. A subsequent bind failure then attempts to free this stale request, resulting in a NULL pointer dereference when accessing ep->ops->free request. The issue is addressed by refactoring the error handling in the bind path to utilize the free() automatic cleanup mechanism.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Resource Release

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-404CWE-476

Identificadores relacionados

BDU:2026-02692

CVE-2025-40095

DLA-4379-1

DSA-6053-1

ECHO-E447-24B5-B715

MGASA-2025-0309

MGASA-2025-0310

OPENSUSE-SU-2025:15702-1

OPENSUSE-SU-2026:10301-1

USN-8029-1

USN-8029-2

USN-8029-3

USN-8030-1

USN-8048-1

USN-8095-1

USN-8095-2

USN-8095-3

USN-8095-4

USN-8095-5

USN-8100-1

USN-8125-1

USN-8126-1

USN-8165-1

USN-8261-1

Produtos afetados

Debian

Linuxmint

Linux Kernel

Ubuntu

PT-2025-44385 · Linux+3 · Linux Kernel+3

CVE-2025-40095

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 1796