Back to search
CVE-2025-40053
Published: Oct 28, 2025
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: net: dlink: handle copy_thresh allocation failure The driver did not handle failure of `netdev_alloc_skb_ip_align()`. If the allocation failed, dereferencing `skb->protocol` could lead to a NULL pointer dereference. This patch tries to allocate `skb`. If the allocation fails, it falls back to the normal path. Tested-on: D-Link DGE-550T Rev-A3
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 84fd710a704f3d53d4120e452e86cea558cf73a8affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 5aa9b885602811a026a3f45c92ea2b4b04c54f09affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 9d49e4b14609e1a20d931e718962c4b6b5485174affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < ea87151df398d407a632c7bf63013290f01c5009affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 7ed5010fef0930f4322d620052edc854ef3ec41f+2 more versions |
Linux | Linux | affected 2.6.12unaffected 0 - < 2.6.12unaffected 5.10.246 - <= 5.10.*unaffected 5.15.195 - <= 5.15.*unaffected 6.1.156 - <= 6.1.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now