PT-2025-46740 · Linux+4 · Linux Kernel+4

Published

2025-10-03

·

Updated

2026-05-07

·

CVE-2025-40183

CVSS v2.0

4.6

Medium

VectorAV:L/AC:L/Au:S/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The Linux kernel contains a flaw related to a metadata destination (metadata dst) leak within the bpf redirect neigh v{4,6} function. This issue occurs in systems utilizing the Cilium BPF egress gateway feature, which directs Kubernetes Pod traffic through dedicated egress gateways for SNAT. The problem arises when using the bpf redirect neigh() helper to forward packets after VXLAN decap, as it sets a new destination entry without releasing the existing one, leading to increasing memory usage in the kernel. The vulnerability involves VXLAN allocating a metadata dst object and attaching it to the socket buffer (skb) through a fake destination entry.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Allocation of Resources Without Limits

Weakness Enumeration

CWE-770CWE-771

Related Identifiers

BDU:2025-14959
CVE-2025-40183
DLA-4379-1
DLA-4404-1
OESA-2025-2764
OESA-2025-2765
OESA-2025-2766
OESA-2025-2767
OESA-2025-2769
OPENSUSE-SU-2025:20172-1
SUSE-SU-2025:4393-1
SUSE-SU-2025:4422-1
SUSE-SU-2025:4505-1
SUSE-SU-2025:4516-1
SUSE-SU-2025:4517-1
SUSE-SU-2025:4521-1
SUSE-SU-2026:20012-1
SUSE-SU-2026:20015-1
SUSE-SU-2026:20021-1
SUSE-SU-2026:20039-1
SUSE-SU-2026:20059-1
SUSE-SU-2026:20473-1
SUSE-SU-2026:20496-1
USN-8029-1
USN-8029-2
USN-8029-3
USN-8030-1
USN-8033-1
USN-8033-2
USN-8033-3
USN-8033-4
USN-8033-5
USN-8033-6
USN-8033-7
USN-8033-8
USN-8034-1
USN-8034-2
USN-8048-1
USN-8095-1
USN-8095-2
USN-8095-3
USN-8095-4
USN-8095-5
USN-8100-1
USN-8125-1
USN-8126-1
USN-8141-1
USN-8163-1
USN-8163-2
USN-8165-1
USN-8243-1
USN-8261-1

Affected Products

Cilium
Debian
Linuxmint
Linux Kernel
Ubuntu