CVE-2025-40173
BaseFortify
Publication date: 2025-11-12
Last updated on: 2025-11-12
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves the Linux kernel's IPv6 tunneling implementation where the tunnel's headroom (buffer space) grows perpetually without limit. Unlike the IPv4 tunnel which has a limit on headroom growth, the IPv6 tunnel continuously increases the needed headroom, potentially leading to resource exhaustion. The fix applies the same headroom growth limit from IPv4 tunnels to IPv6 tunnels to prevent this perpetual growth.
How can this vulnerability impact me? :
The vulnerability can cause the IPv6 tunnel's buffer space to grow indefinitely, which may lead to excessive memory consumption and potential resource exhaustion on affected systems. This could degrade system performance or cause denial of service conditions due to uncontrolled resource usage.