CVE-2025-40192

Published: Nov 12, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: Revert "ipmi: fix msg stack when IPMI is disconnected" This reverts commit c608966f3f9c2dca596967501d00753282b395fc. This patch has a subtle bug that can cause the IPMI driver to go into an infinite loop if the BMC misbehaves in a certain way. Apparently certain BMCs do misbehave this way because several reports have come in recently about this.

Vendor	Product	Versions
Linux	Linux	affected `c608966f3f9c2dca596967501d00753282b395fc - < f4aab940ae9eb3ba32e5332b35703673f00d7f37` affected `c608966f3f9c2dca596967501d00753282b395fc - < b9cc7155e65f6feca51bfedd543b9bd300e2be2b` affected `c608966f3f9c2dca596967501d00753282b395fc - < 8cf5c24533b8058910fcb83a25a9cf0306383780` affected `c608966f3f9c2dca596967501d00753282b395fc - < 5d09ee1bec870263f4ace439402ea840503b503b`
Linux	Linux	affected `6.2` unaffected `0 - < 6.2` unaffected `6.6.113 - <= 6.6.` unaffected `6.12.54 - <= 6.12.` unaffected `6.17.4 - <= 6.17.*` +1 more versions

References

https://git.kernel.org/stable/c/f4aab940ae9eb3ba32e5332b35703673f00d7f37

https://git.kernel.org/stable/c/b9cc7155e65f6feca51bfedd543b9bd300e2be2b

https://git.kernel.org/stable/c/8cf5c24533b8058910fcb83a25a9cf0306383780

https://git.kernel.org/stable/c/5d09ee1bec870263f4ace439402ea840503b503b

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-40192

Description

Affected Products

References