CVE-2025-40279 | Linux Kernel up to 5.15.196/6.1.158/6.6.116/6.12.58/6.17.8 Netlink Message tcf_connmark_dump opt uninitialized pointer (EUVD-2025-201576)

A vulnerability labeled as critical has been found in Linux Kernel up to 5.15.196/6.1.158/6.6.116/6.12.58/6.17.8. The impacted element is the function tcf_connmark_dump of the component Netlink Message Handler. The manipulation of the argument opt results in uninitialized pointer.

This vulnerability was named CVE-2025-40279. The attack needs to be approached within the local network. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More