Dangling Pointer Vulnerability in Linux Kernel's Devlink Rate Functionality
CVE-2025-40251

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 4 December 2025

What is CVE-2025-40251?

A vulnerability exists in the Linux kernel's devlink rate functionality where the 'devlink_rate->parent' pointer is not set to NULL after a parent reference is removed. This error creates a dangling pointer, which can lead to memory management issues, such as refcount errors, in components like 'netdevsim' and 'mlx5'. The issue arises because the function 'devl_rate_nodes_destroy' fails to clear the parent pointer despite correctly notifying the driver. This causes potential memory leaks and system instability during operations that involve adding or removing devlink ports and functions.

Affected Version(s)

Linux d7555984507822458b32a6405881038241d140be < 715d9cda646a8a38ea8b2bb5afb679a7464055e2

Linux d7555984507822458b32a6405881038241d140be

Linux d7555984507822458b32a6405881038241d140be < 542f45486f1ce2d2dde75bd85aca0389ef7046c3

References

https://git.kernel.org/stable/c/715d9cda646a8a38ea8b2bb5a...

https://git.kernel.org/stable/c/c70df6c17d389cc743f0eb301...

https://git.kernel.org/stable/c/542f45486f1ce2d2dde75bd85...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 4, 2025
Vulnerability Reserved
Apr 16, 2025

JSON