Security tracker / CVE-2025-40168

CVE-2025-40168

smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match().

References

• Debian security tracker
• cve.org

Notes

 carnil> Introduced in a046d57da19f ("smc: CLC handshake (incl. preparation steps)").
 carnil> Vulnerable versions: 4.11.

Bugs

Status

Branch	Status
upstream	released (6.18-rc1) [235f81045c008169cc4e1955b4a64e118eebe61b]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	released (6.17.3) [d26e80f7fb62d77757b67a1b94e4ac756bc9c658]
6.12-upstream-stable	needed
6.6-upstream-stable	needed
6.1-upstream-stable	needed
5.10-upstream-stable	needed
sid	released (6.17.6-1)
6.12-trixie-security	needed
6.1-bookworm-security	needed
5.10-bullseye-security	needed