Out-of-Bounds Write Vulnerability in Linux Kernel's SCTP Module
CVE-2025-40331

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 9 December 2025

What is CVE-2025-40331?

A vulnerability in the SCTP (Stream Control Transmission Protocol) module of the Linux Kernel allows for an out-of-bounds write during operations when the required socket lock is not held. This issue occurs in the function chain from sctp_diag_dump() to sctp_ep_dump(), specifically when handling an address list that may have changed size between the time of checking and the time of use. Effective bounds checking is crucial to prevent exploitation and ensure the integrity of the system.

Affected Version(s)

Linux 8f840e47f190cbe61a96945c13e9551048d42cef

Linux 8f840e47f190cbe61a96945c13e9551048d42cef < 3006959371007fc2eae4a078f823c680fa52de1a

Linux 8f840e47f190cbe61a96945c13e9551048d42cef < 72e3fea68eac8d088e44c3dd954e843478e9240e

References

https://git.kernel.org/stable/c/b106a68df0650b694b254427c...

https://git.kernel.org/stable/c/3006959371007fc2eae4a078f...

https://git.kernel.org/stable/c/72e3fea68eac8d088e44c3dd9...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 9, 2025
Vulnerability Reserved
Apr 16, 2025

JSON