CVE-2025-40192

Nov. 14, 2025, 4:42 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: Revert "ipmi: fix msg stack when IPMI is disconnected" This reverts commit c608966f3f9c2dca596967501d00753282b395fc. This patch has a subtle bug that can cause the IPMI driver to go into an infinite loop if the BMC misbehaves in a certain way. Apparently certain BMCs do misbehave this way because several reports have come in recently about this.

Product(s) Impacted

Product Versions
linux_kernel
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://git.kernel.org/stable/c/5d09ee1bec870263f4ace439402ea840503b503b
https://git.kernel.org/stable/c/8cf5c24533b8058910fcb83a25a9cf0306383780
https://git.kernel.org/stable/c/b9cc7155e65f6feca51bfedd543b9bd300e2be2b
https://git.kernel.org/stable/c/f4aab940ae9eb3ba32e5332b35703673f00d7f37

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2025-11-12
CVE-2025-40192

Timeline

Published: Nov. 12, 2025, 10:15 p.m.
Last Modified: Nov. 14, 2025, 4:42 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.