CVE-2025-40003
net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work
References
Notes
carnil> Introduced in a556c76adc05 ("net: mscc: Add initial Ocelot switch support").
carnil> Vulnerable versions: 4.18.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.18-rc1) [bc9ea787079671cb19a8b25ff9f02be5ef6bfcf5]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
released (6.17.4) [c3363db5d0685a8d077ade706051bbccc75f7e14]
|
| 6.16-upstream-stable |
needed
|
| 6.12-upstream-stable |
released (6.12.54) [70acdd1eb35ffb3afdcb59e4c3bbb178da411d0f]
|
| 6.6-upstream-stable |
needed
|
| 6.1-upstream-stable |
needed
|
| 5.10-upstream-stable |
needed
|
| sid |
released (6.17.6-1)
|
| 6.12-trixie-security |
released (6.12.57-1)
|
| 6.1-bookworm-security |
needed
|
| 5.10-bullseye-security |
needed
|
