CVE-2025-40202

Summary

In the Linux kernel, the following vulnerability has been resolved:

ipmi: Rework user message limit handling

The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free.

Restructure how this is all done to handle more in the receive message allocation routine, so all refcouting and user message limit counts are done in that routine. It's a lot cleaner and safer.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < f63723ca7d7623f9dae1990973cd158671f03c56affected
LinuxLinux8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < 348121b29594d42d1635648fd3ed31dfa25351d5affected
LinuxLinux8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < 53d6e403affbf6df2c859a0ea00ccfc1e72090caaffected
LinuxLinux8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < 0ed73be9a2547ffb9b5c1d879ad9bfab73d920b5affected
LinuxLinux8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < b52da4054ee0bf9ecb44996f2c83236ff50b3812affected
LinuxLinux5.19affected
LinuxLinux0 < 5.19unaffected
LinuxLinux6.1.157 <= 6.1.*unaffected
LinuxLinux6.6.113 <= 6.6.*unaffected
LinuxLinux6.12.54 <= 6.12.*unaffected
LinuxLinux6.17.4 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References