Use After Free Vulnerability in Linux Kernel Network Stack
CVE-2025-40135

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 12 November 2025

What is CVE-2025-40135?

A vulnerability within the Linux kernel's network stack has been identified that affects the implementation of IPv6 transmissions. The issue arises from the improper handling of reference counting in the ip6_xmit() function, which could lead to a Use After Free condition. This vulnerability was addressed by employing RCU (Read-Copy-Update) mechanisms to utilize dst_dev_rcu(), thus preventing potential data integrity issues. Users and system administrators are encouraged to update their systems to mitigate the associated risks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch