Security Flaw In Linux Kernel Affects Timestamp Functionality
CVE-2025-40175
What is CVE-2025-40175?
A vulnerability has been identified in the Linux kernel related to improper management of Socket Buffers (SKBs) during Precision Time Protocol (PTP) operations. When the driver requests a transmission timestamp, the SKB is cloned to maintain an accurate reference count. However, an issue arises if the SKB is assigned but not consumed during PTP operations, especially in instances like a reset while running PTP applications. The resolution involves adding a verification check in the timestamp release function to ensure that the SKB assigned to the transmission timestamp has not been prematurely freed, thus preventing potential resource leaks and enhancing system stability.
Affected Version(s)
Linux 4901e83a94ef0a8baf27916f31daf59b0a68547f < 2c84e91ef831d4fedb0b94670b3cfd1cc5f966a5
Linux 4901e83a94ef0a8baf27916f31daf59b0a68547f
Linux 6.16