PT-2025-49084 · Unknown+4 · Openvswitch+4

Published

2025-12-04

·

Updated

2026-05-22

·

CVE-2025-40254

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17.0-rc4+
Description The Linux kernel contains a flaw in the Open vSwitch (OVS) component related to the handling of Network Service Header (NSH) fields within the set(nsh(...)) action. The validation process for this action is fundamentally flawed, leading to potential kernel crashes or unpredictable behavior. Specifically, the code incorrectly handles nested attributes, causing memory corruption during validation and flow installation. The issue stems from confusion between flags related to masked attributes and improper memory layout handling. Attempts to utilize this action result in either validation failure or a kernel crash, and even if a flow is installed, it will not function as intended due to mixed-up keys and masks. The functionality was never fully operational since its introduction.
Recommendations Versions prior to 6.17.0-rc4+ should be updated.

Exploit

Related Identifiers

AZL-71384
CVE-2025-40254
DLA-4404-1
ECHO-F681-F9DD-183C
MGASA-2026-0017
MGASA-2026-0018
OESA-2026-2417
OESA-2026-2418
OPENSUSE-SU-2026:20145-1
SUSE-SU-2026:0447-1
SUSE-SU-2026:0472-1
SUSE-SU-2026:0587-1
SUSE-SU-2026:20207-1
SUSE-SU-2026:20220-1
SUSE-SU-2026:20228-1
SUSE-SU-2026:20477-1
SUSE-SU-2026:20498-1
SUSE-SU-2026:20845-1
SUSE-SU-2026:20876-1
USN-8094-1
USN-8094-2
USN-8094-3
USN-8094-4
USN-8094-5
USN-8095-1
USN-8095-2
USN-8095-3
USN-8095-4
USN-8095-5
USN-8096-1
USN-8096-2
USN-8096-3
USN-8096-4
USN-8096-5
USN-8100-1
USN-8116-1
USN-8125-1
USN-8126-1
USN-8141-1
USN-8152-1
USN-8163-1
USN-8163-2
USN-8165-1
USN-8243-1
USN-8261-1

Affected Products

Debian
Linuxmint
Linux Kernel
Openvswitch
Ubuntu