Null Dereference Vulnerability in Linux Kernel Affecting SCTP
CVE-2025-40240

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 4 December 2025

What is CVE-2025-40240?

A vulnerability exists in the Linux kernel's handling of SCTP (Stream Control Transmission Protocol) that can lead to a null dereference when processing chunk data buffers. Specifically, if the chunk's skb pointer is checked without appropriately validating chunk->head_skb first, it may cause unexpected behavior or system crashes. The flaw arises when the frag_list is not checked before updating the skb pointer, potentially enabling complications in data transmission and overall system stability. This issue has been addressed in subsequent updates to the kernel.

Affected Version(s)

Linux 90017accff61ae89283ad9a51f9ac46ca01633fb < 61cda2777b07d27459f5cac5a047c3edf9c8a1a9

Linux 90017accff61ae89283ad9a51f9ac46ca01633fb < 08165c296597075763130919f2aae59b5822f016

Linux 90017accff61ae89283ad9a51f9ac46ca01633fb < 03e80a4b04ef1fb2c61dd63216ab8d3a5dcb196f

References

https://git.kernel.org/stable/c/61cda2777b07d27459f5cac5a...

https://git.kernel.org/stable/c/08165c296597075763130919f...

https://git.kernel.org/stable/c/03e80a4b04ef1fb2c61dd6321...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 4, 2025
Vulnerability Reserved
Apr 16, 2025

JSON