CVE-2025-40202
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
ipmi: Rework user message limit handling
The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free.
Restructure how this is all done to handle more in the receive message allocation routine, so all refcouting and user message limit counts are done in that routine. It's a lot cleaner and safer.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < f63723ca7d7623f9dae1990973cd158671f03c56 | affected |
| Linux | Linux | 8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < 348121b29594d42d1635648fd3ed31dfa25351d5 | affected |
| Linux | Linux | 8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < 53d6e403affbf6df2c859a0ea00ccfc1e72090ca | affected |
| Linux | Linux | 8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < 0ed73be9a2547ffb9b5c1d879ad9bfab73d920b5 | affected |
| Linux | Linux | 8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < b52da4054ee0bf9ecb44996f2c83236ff50b3812 | affected |
| Linux | Linux | 5.19 | affected |
| Linux | Linux | 0 < 5.19 | unaffected |
| Linux | Linux | 6.1.157 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.113 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.54 <= 6.12.* | unaffected |
| Linux | Linux | 6.17.4 <= 6.17.* | unaffected |
| Linux | Linux | 6.18 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/f63723ca7d7623f9dae1990973cd158671f03c56
- https://git.kernel.org/stable/c/348121b29594d42d1635648fd3ed31dfa25351d5
- https://git.kernel.org/stable/c/53d6e403affbf6df2c859a0ea00ccfc1e72090ca
- https://git.kernel.org/stable/c/0ed73be9a2547ffb9b5c1d879ad9bfab73d920b5
- https://git.kernel.org/stable/c/b52da4054ee0bf9ecb44996f2c83236ff50b3812
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.