Vulnerability in Linux

CVE-2025-40298

In the Linux kernel, the following vulnerability has been resolved: gve: Implement settime64 with -EOPNOTSUPP ptp_clock_settime() assumes every ptp_clock has implemented settime64(). Stub it with -EOPNOTSUPP to prevent a NULL dereference.

EPSS: 0.002 (5.1th percentile) — read the EPSS interpretation.

Affected products

  • Linux — versions acd16380523b400400523fe54c7499320e558e80, 6.17, 0

References