PT-2025-49430 · Linux+3 · Linux Kernel+3

Published

2025-12-08

·

Updated

2026-04-20

·

CVE-2025-40297

CVSS v2.0

6.0

Medium

VectorAV:L/AC:H/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The Linux kernel contains a use-after-free issue within the networking bridge component. This flaw arises from a race condition during the deletion of a forwarding database (fdb) entry, specifically when Multiple Spanning Tree (MST) is enabled and VLAN filtering is disabled. The issue occurs because MST can bypass a port's disabled state, allowing fdb learning to occur while the port is being deleted, leading to a use-after-free condition. The fix introduces a check for the port's VLAN group, which is set to NULL during deletion, to prevent the state bypass.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2026-02835
CVE-2025-40297
ECHO-CC02-84F1-44C0
MGASA-2026-0017
MGASA-2026-0018
OPENSUSE-SU-2026:20145-1
SUSE-SU-2026:0278-1
SUSE-SU-2026:0281-1
SUSE-SU-2026:0293-1
SUSE-SU-2026:0315-1
SUSE-SU-2026:0939-1
SUSE-SU-2026:0940-1
SUSE-SU-2026:0941-1
SUSE-SU-2026:0943-1
SUSE-SU-2026:0944-1
SUSE-SU-2026:0946-1
SUSE-SU-2026:0951-1
SUSE-SU-2026:1073-1
SUSE-SU-2026:1083-1
SUSE-SU-2026:1089-1
SUSE-SU-2026:1096-1
SUSE-SU-2026:1099-1
SUSE-SU-2026:1100-1
SUSE-SU-2026:1101-1
SUSE-SU-2026:1125-1
SUSE-SU-2026:1132-1
SUSE-SU-2026:1136-1
SUSE-SU-2026:20207-1
SUSE-SU-2026:20220-1
SUSE-SU-2026:20228-1
SUSE-SU-2026:20477-1
SUSE-SU-2026:20498-1
SUSE-SU-2026:20828-1
SUSE-SU-2026:20829-1
SUSE-SU-2026:20831-1
SUSE-SU-2026:20832-1
SUSE-SU-2026:20837-1
SUSE-SU-2026:20840-1
SUSE-SU-2026:20841-1
SUSE-SU-2026:20842-1
SUSE-SU-2026:20845-1
SUSE-SU-2026:20847-1
SUSE-SU-2026:20848-1
SUSE-SU-2026:20849-1
SUSE-SU-2026:20850-1
SUSE-SU-2026:20851-1
SUSE-SU-2026:20852-1
SUSE-SU-2026:20853-1
SUSE-SU-2026:20854-1
SUSE-SU-2026:20855-1
SUSE-SU-2026:20856-1
SUSE-SU-2026:20857-1
SUSE-SU-2026:20858-1
SUSE-SU-2026:20859-1
SUSE-SU-2026:20860-1
SUSE-SU-2026:20861-1
SUSE-SU-2026:20862-1
SUSE-SU-2026:20863-1
SUSE-SU-2026:20864-1
SUSE-SU-2026:20865-1
SUSE-SU-2026:20866-1
SUSE-SU-2026:20876-1
SUSE-SU-2026:20880-1
SUSE-SU-2026:20881-1
SUSE-SU-2026:20882-1
SUSE-SU-2026:20883-1
SUSE-SU-2026:20884-1
SUSE-SU-2026:20885-1
SUSE-SU-2026:20886-1
SUSE-SU-2026:20887-1
SUSE-SU-2026:20888-1
SUSE-SU-2026:20889-1
SUSE-SU-2026:20891-1
SUSE-SU-2026:20892-1
SUSE-SU-2026:20893-1
SUSE-SU-2026:20894-1
SUSE-SU-2026:20895-1
SUSE-SU-2026:20896-1
SUSE-SU-2026:20897-1
SUSE-SU-2026:20898-1
SUSE-SU-2026:20899-1
SUSE-SU-2026:20900-1
SUSE-SU-2026:20944-1
SUSE-SU-2026:20945-1
SUSE-SU-2026:20946-1
SUSE-SU-2026:20947-1
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8029-1
USN-8029-2
USN-8029-3
USN-8030-1
USN-8031-1
USN-8031-2
USN-8031-3
USN-8048-1
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Debian
Linuxmint
Linux Kernel
Ubuntu