PT-2025-43613 · Linux+4 · Linux Kernel+4

Published

2025-09-12

·

Updated

2026-04-20

·

CVE-2025-40018

CVSS v2.0

5.7

Medium

VectorAV:L/AC:L/Au:S/C:P/I:P/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A use-after-free condition may occur in the Linux kernel’s ipvs module during network namespace cleanup. Specifically, the ip vs ftp exit() function could unregister ip vs ftp before connections with valid cp->app pointers are flushed. This issue is addressed by introducing a global exiting module flag to defer unregistration until all connections are flushed, preventing the use-after-free. The vulnerable code path involves the interaction between ip vs ftp exit() and ip vs cleanup batch().
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Weakness Enumeration

CWE-416

Related Identifiers

AZL-68769
BDU:2026-02772
CVE-2025-40018
DLA-4379-1
DLA-4404-1
DSA-6053-1
ECHO-E903-8773-4D21
MGASA-2025-0309
MGASA-2025-0310
OESA-2026-1340
OESA-2026-1341
OPENSUSE-SU-2025:15702-1
OPENSUSE-SU-2025:20091-1
OPENSUSE-SU-2026:10301-1
SUSE-SU-2025:21040-1
SUSE-SU-2025:21052-1
SUSE-SU-2025:21056-1
SUSE-SU-2025:21064-1
SUSE-SU-2025:21080-1
SUSE-SU-2025:21147-1
SUSE-SU-2025:21180-1
SUSE-SU-2025:4057-1
SUSE-SU-2025:4111-1
SUSE-SU-2025:4128-1
SUSE-SU-2025:4132-1
SUSE-SU-2025:4135-1
SUSE-SU-2025:4139-1
SUSE-SU-2025:4140-1
SUSE-SU-2025:4141-1
SUSE-SU-2025:4149-1
SUSE-SU-2025:4188-1
SUSE-SU-2025:4189-1
SUSE-SU-2025:4301-1
SUSE-SU-2025:4320-1
SUSE-SU-2026:0352-1
SUSE-SU-2026:1185-1
SUSE-SU-2026:1188-1
SUSE-SU-2026:1212-1
SUSE-SU-2026:1221-1
SUSE-SU-2026:1222-1
SUSE-SU-2026:1225-1
SUSE-SU-2026:1236-1
SUSE-SU-2026:1239-1
SUSE-SU-2026:1242-1
SUSE-SU-2026:1244-1
SUSE-SU-2026:1248-1
SUSE-SU-2026:1259-1
SUSE-SU-2026:1263-1
SUSE-SU-2026:1268-1
SUSE-SU-2026:1269-1
SUSE-SU-2026:1271-1
SUSE-SU-2026:1278-1
SUSE-SU-2026:1280-1
SUSE-SU-2026:1281-1
SUSE-SU-2026:1283-1
SUSE-SU-2026:1285-1
SUSE-SU-2026:1287-1
SUSE-SU-2026:1297-1
SUSE-SU-2026:1298-1
SUSE-SU-2026:1304-1
SUSE-SU-2026:21007-1
SUSE-SU-2026:21008-1
SUSE-SU-2026:21043-1
SUSE-SU-2026:21044-1
SUSE-SU-2026:21045-1
SUSE-SU-2026:21046-1
SUSE-SU-2026:21047-1
SUSE-SU-2026:21048-1
SUSE-SU-2026:21049-1
SUSE-SU-2026:21050-1
SUSE-SU-2026:21053-1
SUSE-SU-2026:21054-1
SUSE-SU-2026:21055-1
SUSE-SU-2026:21056-1
SUSE-SU-2026:21057-1
SUSE-SU-2026:21058-1
SUSE-SU-2026:21059-1
SUSE-SU-2026:21060-1
SUSE-SU-2026:21061-1
SUSE-SU-2026:21073-1
SUSE-SU-2026:21074-1
SUSE-SU-2026:21075-1
SUSE-SU-2026:21076-1
SUSE-SU-2026:21077-1
SUSE-SU-2026:21078-1
SUSE-SU-2026:21079-1
SUSE-SU-2026:21080-1
SUSE-SU-2026:21083-1
SUSE-SU-2026:21084-1
SUSE-SU-2026:21085-1
SUSE-SU-2026:21086-1
SUSE-SU-2026:21087-1
SUSE-SU-2026:21088-1
SUSE-SU-2026:21089-1
SUSE-SU-2026:21090-1
SUSE-SU-2026:21091-1
SUSE-SU-2026:21096-1
SUSE-SU-2026:21099-1
SUSE-SU-2026:21217-1
SUSE-SU-2026:21219-1
USN-7907-1
USN-7907-2
USN-7907-3
USN-7907-4
USN-7907-5
USN-7920-1
USN-7920-2
USN-7921-1
USN-7921-2
USN-7922-1
USN-7922-2
USN-7922-3
USN-7922-4
USN-7922-5
USN-7928-1
USN-7928-2
USN-7928-3
USN-7928-4
USN-7928-5
USN-7930-1
USN-7930-2
USN-7931-1
USN-7931-2
USN-7931-3
USN-7931-4
USN-7931-5
USN-7934-1
USN-7935-1
USN-7936-1
USN-7937-1
USN-7938-1
USN-7939-1
USN-7939-2
USN-7940-1
USN-7940-2

Affected Products

Debian
Linuxmint
Linux Kernel
Suse
Ubuntu