SB20251112158 - Input validation error in Linux kernel ipv6
Published: November 12, 2025
Security Bulletin ID
SB20251112158
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Input validation error (CVE-ID: CVE-2025-40173)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the ip6_tnl_xmit() function in net/ipv6/ip6_tunnel.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/10fe967efe73c610e526ff7460581610633dee9c
- https://git.kernel.org/stable/c/11f6066af3bfb8149aa16c42c0b0c5ea5b199a94
- https://git.kernel.org/stable/c/21f4d45eba0b2dcae5dbc9e5e0ad08735c993f16
- https://git.kernel.org/stable/c/402b6985e872b4cf394bbbf33b503947a326a6cb
- https://git.kernel.org/stable/c/48294a67863c9cfa367abb66bbf0ef6548ae124f
- https://git.kernel.org/stable/c/566f8d5c8a443f2dd69c5460fdec43ed1c870c65
- https://git.kernel.org/stable/c/b6eb25d870f1a8ae571fd3da2244b71df547824b
- https://git.kernel.org/stable/c/eeb4345488672584db4f8c20a1ae13a212ce31c4