Race Condition in Linux Kernel's NVMe-FC Component
CVE-2025-40342

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
9 December 2025

What is CVE-2025-40342?

A race condition exists in the NVMe-FC component of the Linux kernel related to remote port management. Specifically, the function nvme_fc_unregister_remote can remove a remote port from an lport object while the system may still be attempting to reconnect due to the lack of a lock when checking the port_state. This can lead to inconsistencies within the driver, jeopardizing the stability and security of the system. Proper locking mechanisms need to be implemented to protect shared state during concurrent operations to mitigate this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux e399441de9115cd472b8ace6c517708273ca7997

Linux e399441de9115cd472b8ace6c517708273ca7997

Linux e399441de9115cd472b8ace6c517708273ca7997 < 4253e0a4546138a2bf9cb6acf66b32fee677fc7c

References

https://git.kernel.org/stable/c/de3d91af47bc015031e7721b1...
https://git.kernel.org/stable/c/e8cde03de8674b05f2c5e0870...
https://git.kernel.org/stable/c/4253e0a4546138a2bf9cb6acf...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.