CVE-2025-40364

HIGH EPSS 14.0%
Published Apr 18, 20251y ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Apr 18, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: io_uring: fix io_req_prep_async with provided buffers io_req_prep_async() can import provided buffers, commit the ring state by giving up on that before, it'll be reimported later if needed.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
14.0% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 4

VendorProductVersionRange
linuxlinux_kernel*≥5.19  –  <6.1.129
linuxlinux_kernel*≥6.2  –  <6.6.78
linuxlinux_kernel*≥6.7  –  <6.12.14
linuxlinux_kernel*≥6.13  –  <6.13.3

References 7

  • git.kernel.org https://git.kernel.org/stable/c/233b210a678bddf8b49b02a070074a52b87e6d43
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/35ae7910c349fb3c60439992e2e0e79061e95382
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a1b17713b32c75a90132ea2f92b1257f3bbc20f3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a94592ec30ff67dc36c424327f1e0a9ceeeb9bd3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b86f1d51731e621e83305dc9564ae14c9ef752bf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d63b0e8a628e62ca85a0f7915230186bb92f8bb4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f0ef94553868d07c1b14d7743a7e2553e5a831a3
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/233b210a678bddf8b49b02a070074a52b87e6d43
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/35ae7910c349fb3c60439992e2e0e79061e95382
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a1b17713b32c75a90132ea2f92b1257f3bbc20f3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a94592ec30ff67dc36c424327f1e0a9ceeeb9bd3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b86f1d51731e621e83305dc9564ae14c9ef752bf
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d63b0e8a628e62ca85a0f7915230186bb92f8bb4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f0ef94553868d07c1b14d7743a7e2553e5a831a3
    Patch