CVE-2025-40175

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the idpf driver related to the handling of SKBs (Socket Buffer) in PTP (Precision Time Protocol) flows. Specifically, the issue arises when an SKB is assigned but not consumed by PTP flows, potentially due to a reset during PTP application execution. This can lead to remaining SKBs not being properly released, potentially causing resource leaks. The driver requests a Tx (transmit) timestamp value, cloning SKBs using skb get to increment the reference counter and prevent premature freeing. A check has been added to the release timestamping function to verify if the SKB assigned to the Tx timestamp latch has been freed, and to release any remaining SKBs.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.