Vulnerability in Linux

CVE-2025-40176

In the Linux kernel, the following vulnerability has been resolved: tls: wait for pending async decryptions if tls_strp_msg_hold fails Async decryption calls tls_strp_msg_hold to create a clone of the input skb to hold references to the…

EPSS: 0.002 (5.8th percentile) — read the EPSS interpretation.

Affected products

  • Linux — versions 84c61fe1a75b4255df1e1e7c054c9e6d048da417, 6.0, 0

References