CVE-2025-40202

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-40202
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40202.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-40202
Downstream
Related
Published
2025-11-12T21:56:34.527Z
Modified
2026-03-12T03:54:35.618931Z
Summary
ipmi: Rework user message limit handling
Details

In the Linux kernel, the following vulnerability has been resolved:

ipmi: Rework user message limit handling

The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free.

Restructure how this is all done to handle more in the receive message allocation routine, so all refcouting and user message limit counts are done in that routine. It's a lot cleaner and safer.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40202.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82
Fixed
f63723ca7d7623f9dae1990973cd158671f03c56
Fixed
348121b29594d42d1635648fd3ed31dfa25351d5
Fixed
53d6e403affbf6df2c859a0ea00ccfc1e72090ca
Fixed
0ed73be9a2547ffb9b5c1d879ad9bfab73d920b5
Fixed
b52da4054ee0bf9ecb44996f2c83236ff50b3812

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40202.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.19.0
Fixed
6.1.157
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.113
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.54
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.17.4

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40202.json"