-

CVE-2025-40019

EPSS 0.03%
Veröffentlicht 24.10.2025 11:44:29
Zuletzt bearbeitet 29.10.2025 14:15:52
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

crypto: essiv - Check ssize for decryption and in-place encryption

Move the ssize check to the start in essiv_aead_crypt so that
it's also checked for decryption and in-place encryption.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 29294dd6f1e7acf527255fb136ffde6602c3a129

Version be1eb7f78aa8fbe34779c56c266ccd0364604e71

Status affected

Version < 71f03f8f72d9c70ffba76980e78b38c180e61589

Version be1eb7f78aa8fbe34779c56c266ccd0364604e71

Status affected

Version < df58651968f82344a0ed2afdafd20ecfc55ff548

Version be1eb7f78aa8fbe34779c56c266ccd0364604e71

Status affected

Version < 248ff2797ff52a8cbf86507f9583437443bf7685

Version be1eb7f78aa8fbe34779c56c266ccd0364604e71

Status affected

Version < f37e7860dc5e94c70b4a3e38a5809181310ea9ac

Version be1eb7f78aa8fbe34779c56c266ccd0364604e71

Status affected

Version < dc4c854a5e7453c465fa73b153eba4ef2a240abe

Version be1eb7f78aa8fbe34779c56c266ccd0364604e71

Status affected

Version < da7afb01ba05577ba3629f7f4824205550644986

Version be1eb7f78aa8fbe34779c56c266ccd0364604e71

Status affected

Version < 6bb73db6948c2de23e407fe1b7ef94bf02b7529f

Version be1eb7f78aa8fbe34779c56c266ccd0364604e71

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.4

Status affected

Version < 5.4

Version 0

Status unaffected

Version <= 5.4.*

Version 5.4.301

Status unaffected

Version <= 5.10.*

Version 5.10.246

Status unaffected

Version <= 5.15.*

Version 5.15.195

Status unaffected

Version <= 6.1.*

Version 6.1.157

Status unaffected

Version <= 6.6.*

Version 6.6.113

Status unaffected

Version <= 6.12.*

Version 6.12.54

Status unaffected

Version <= 6.17.*

Version 6.17.4

Status unaffected

Version <= *

Version 6.18

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.077

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/df58651968f82344a0ed2afdafd20ecfc55ff548

https://git.kernel.org/stable/c/248ff2797ff52a8cbf86507f9583437443bf7685

https://git.kernel.org/stable/c/f37e7860dc5e94c70b4a3e38a5809181310ea9ac

https://git.kernel.org/stable/c/dc4c854a5e7453c465fa73b153eba4ef2a240abe

https://git.kernel.org/stable/c/da7afb01ba05577ba3629f7f4824205550644986

https://git.kernel.org/stable/c/6bb73db6948c2de23e407fe1b7ef94bf02b7529f

https://git.kernel.org/stable/c/29294dd6f1e7acf527255fb136ffde6602c3a129

https://git.kernel.org/stable/c/71f03f8f72d9c70ffba76980e78b38c180e61589

https://nvd.nist.gov/vuln/detail/CVE-2025-40019

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-40019

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-40019

EUVD