CVE-2025-40080

Summary

In the Linux kernel, the following vulnerability has been resolved:

nbd: restrict sockets to TCP and UDP

Recently, syzbot started to abuse NBD with all kinds of sockets.

Commit cf1b2326b734 ("nbd: verify socket is supported during setup") made sure the socket supported a shutdown() method.

Explicitely accept TCP and UNIX stream sockets.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxcf1b2326b734896734c6e167e41766f9cee7686a < c365e8f20f4201d873a70385bd919f0fb531e960affected
LinuxLinuxcf1b2326b734896734c6e167e41766f9cee7686a < 4f9e6ff6319dbcebea64b50af0304cf0ad7e97e7affected
LinuxLinuxcf1b2326b734896734c6e167e41766f9cee7686a < 37ad11f20e164c23ce827dd455b42c0fdd29685caffected
LinuxLinuxcf1b2326b734896734c6e167e41766f9cee7686a < 808e2335bc1cf2293b9e36ccc94c267c81509c71affected
LinuxLinuxcf1b2326b734896734c6e167e41766f9cee7686a < 9f7c02e031570e8291a63162c6c046dc15ff85b0affected
LinuxLinux4df728651b8a99693c69962d8e5a5b9e5a3bbcc7affected
LinuxLinux083322455c67d278c56a66b73f1221f004ee600aaffected
LinuxLinux4fa1cbd587ef967812f9d9f6ce46ec1dead7502caffected
LinuxLinux4.14.152 < 4.15affected
LinuxLinux4.19.82 < 4.20affected
LinuxLinux5.3.9 < 5.4affected
LinuxLinux5.4affected
LinuxLinux0 < 5.4unaffected
LinuxLinux6.1.156 <= 6.1.*unaffected
LinuxLinux6.6.112 <= 6.6.*unaffected
LinuxLinux6.12.53 <= 6.12.*unaffected
LinuxLinux6.17.3 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References