Vulnerability in Linux

CVE-2025-40302

In the Linux kernel, the following vulnerability has been resolved: media: videobuf2: forbid remove_bufs when legacy fileio is active vb2_ioctl_remove_bufs() call manipulates queue internal buffer list, potentially overwriting some point…

EPSS: 0.002 (5.0th percentile) — read the EPSS interpretation.

Affected products

  • Linux — versions a3293a85381ec9680aa2929547fbc76c5d87a1b2, 6.10, 0

References