Shift-Out-Of-Bounds Vulnerability in Linux Kernel SCTP Transport
CVE-2025-40281

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 6 December 2025

What is CVE-2025-40281?

A shift-out-of-bounds vulnerability exists in the SCTP (Stream Control Transmission Protocol) component of the Linux kernel. This issue can arise during the updating of retransmission timeouts (RTO), particularly if users set excessively large values for 'rto_alpha' and 'rto_beta'. The bug could lead to unpredictable behavior as the system might attempt to perform operations beyond the acceptable range for 32-bit unsigned integers. It is essential for system administrators and developers to ensure their Linux kernel remains up-to-date and adequately configured to prevent potential exploitation.

Affected Version(s)

Linux b58537a1f5629bdc98a8b9dc2051ce0e952f6b4b < 0e0413e3315199b23ff4aec295e256034cd0a6e4

Linux b58537a1f5629bdc98a8b9dc2051ce0e952f6b4b < 834e65be429c0fa4f9bb5945064bd57f18ed2187

Linux b58537a1f5629bdc98a8b9dc2051ce0e952f6b4b

References

https://git.kernel.org/stable/c/0e0413e3315199b23ff4aec29...

https://git.kernel.org/stable/c/834e65be429c0fa4f9bb59450...

https://git.kernel.org/stable/c/abb086b9a95d0ed3b757ee599...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 6, 2025
Vulnerability Reserved
Apr 16, 2025

JSON