CVE-2025-40299

Summary

In the Linux kernel, the following vulnerability has been resolved:

gve: Implement gettimex64 with -EOPNOTSUPP

gve implemented a ptp_clock for sole use of do_aux_work at this time. ptp_clock_gettime() and ptp_sys_offset() assume every ptp_clock has implemented either gettimex64 or gettime64. Stub gettimex64 and return -EOPNOTSUPP to prevent NULL dereferencing.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxacd16380523b400400523fe54c7499320e558e80 < 96ec90412ceb58c73fd3714e40ab2cee1eedac3baffected
LinuxLinuxacd16380523b400400523fe54c7499320e558e80 < 6ab753b5d8e521616cd9bd10b09891cbeb7e0235affected
LinuxLinux6.17affected
LinuxLinux0 < 6.17unaffected
LinuxLinux6.17.8 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References