CVE-2025-40299

Published: Dec 8, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: gve: Implement gettimex64 with -EOPNOTSUPP gve implemented a ptp_clock for sole use of do_aux_work at this time. ptp_clock_gettime() and ptp_sys_offset() assume every ptp_clock has implemented either gettimex64 or gettime64. Stub gettimex64 and return -EOPNOTSUPP to prevent NULL dereferencing.

Vendor	Product	Versions
Linux	Linux	affected `acd16380523b400400523fe54c7499320e558e80 - < 96ec90412ceb58c73fd3714e40ab2cee1eedac3b` affected `acd16380523b400400523fe54c7499320e558e80 - < 6ab753b5d8e521616cd9bd10b09891cbeb7e0235`
Linux	Linux	affected `6.17` unaffected `0 - < 6.17` unaffected `6.17.8 - <= 6.17.` unaffected `6.18 - <= `

References

https://git.kernel.org/stable/c/96ec90412ceb58c73fd3714e40ab2cee1eedac3b

https://git.kernel.org/stable/c/6ab753b5d8e521616cd9bd10b09891cbeb7e0235

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-40299

Description

Affected Products

References