SB2025120847 - Memory leak in Linux kernel sched
Published: December 8, 2025
Security Bulletin ID
SB2025120847
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Memory leak (CVE-ID: CVE-2025-40279)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the tcf_connmark_dump() function in net/sched/act_connmark.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/218b67c8c8246d47a2a7910eae80abe4861fe2b7
- https://git.kernel.org/stable/c/25837889ec062f2b7618142cd80253dff3da5343
- https://git.kernel.org/stable/c/31e4aa93e2e5b5647fc235b0f6ee329646878f9e
- https://git.kernel.org/stable/c/51cb05d4fd632596816ba44e882e84db9fb28a7e
- https://git.kernel.org/stable/c/62b656e43eaeae445a39cd8021a4f47065af4389
- https://git.kernel.org/stable/c/73cc56c608c209d3d666cc571293b090a471da70