CVE-2025-40204
- Source
- https://cve.org/CVERecord?id=CVE-2025-40204
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40204.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-40204
- Downstream
- Related
- Published
- 2025-11-12T21:56:35.110Z
- Modified
- 2026-03-20T12:43:13.063825Z
- Summary
- sctp: Fix MAC comparison to be constant-time
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
sctp: Fix MAC comparison to be constant-time
To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40204.json" }- References
-
- https://git.kernel.org/stable/c/0b32ff285ff6f6f1ac1d9495787ccce8837d6405
- https://git.kernel.org/stable/c/0e8b8c326c2a6de4d837b1bb034ea704f4690d77
- https://git.kernel.org/stable/c/1cd60e0d0fb8f0e62ec4499138afce6342dc9d4c
- https://git.kernel.org/stable/c/8019b3699289fce3f10b63f98601db97b8d105b0
- https://git.kernel.org/stable/c/9c05d44ec24126fc283835b68f82dba3ae985209
- https://git.kernel.org/stable/c/b93fa8dc521d00d2d44bf034fb90e0d79b036617
- https://git.kernel.org/stable/c/dd91c79e4f58fbe2898dac84858033700e0e99fb
- https://git.kernel.org/stable/c/ed3044b9c810c5c24eb2830053fbfe5fd134c5d4
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40204.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-40204
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1da177e4c3f41524e886b7f1b8a0c1fc7321cac2Fixedb93fa8dc521d00d2d44bf034fb90e0d79b036617Fixed0e8b8c326c2a6de4d837b1bb034ea704f4690d77Fixed1cd60e0d0fb8f0e62ec4499138afce6342dc9d4cFixed9c05d44ec24126fc283835b68f82dba3ae985209Fixeded3044b9c810c5c24eb2830053fbfe5fd134c5d4Fixed8019b3699289fce3f10b63f98601db97b8d105b0Fixed0b32ff285ff6f6f1ac1d9495787ccce8837d6405Fixeddd91c79e4f58fbe2898dac84858033700e0e99fb
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced2.6.12Fixed5.4.301
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.246
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.195
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.157
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.113
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.12.54
- Type
- ECOSYSTEM
- Events
-
Introduced6.13.0Fixed6.17.4