CVE-2025-40019

N/A Unknown

Published: October 24, 2025 Modified: October 29, 2025

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: essiv - Check ssize for decryption and in-place encryption Move the ssize check to the start in essiv_aead_crypt so that it's also checked for decryption and in-place encryption.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

https://git.kernel.org/stable/c/248ff2797ff52a8cbf86507f9583437443bf7685

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/29294dd6f1e7acf527255fb136ffde6602c3a129

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/6bb73db6948c2de23e407fe1b7ef94bf02b7529f

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/71f03f8f72d9c70ffba76980e78b38c180e61589

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/da7afb01ba05577ba3629f7f4824205550644986

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/dc4c854a5e7453c465fa73b153eba4ef2a240abe

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/df58651968f82344a0ed2afdafd20ecfc55ff548

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/f37e7860dc5e94c70b4a3e38a5809181310ea9ac

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

8 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

0.0%

8th percentile

Exploitation Status

Not in CISA KEV