CVE-2025-40299 | Linux Kernel up to 6.17.7 gve ptp_clock_gettime null pointer dereference

A vulnerability described as critical has been identified in Linux Kernel up to 6.17.7. This affects the function ptp_clock_gettime of the component gve. Executing manipulation can lead to null pointer dereference.

This vulnerability appears as CVE-2025-40299. The attacker needs to be present on the local network. There is no available exploit.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More