CVE-2025-40242
CVE-2025-40242 is a security vulnerability that is still awaiting full analysis and scoring. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- EPSS exploit prediction: 0% (7th percentile)
- Actively exploited: Not listed in CISA KEV
- EU (EUVD) id: EUVD-2025-201217
- Published:
- Last modified:
Description
In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix unlikely race in gdlm_put_lock In gdlm_put_lock(), there is a small window of time in which the DFL_UNMOUNT flag has been set but the lockspace hasn't been released, yet. In that window, dlm may still call gdlm_ast() and gdlm_bast(). To prevent it from dereferencing freed glock objects, only free the glock if the lockspace has actually been released.
Frequently asked questions
- What is CVE-2025-40242?
- In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix unlikely race in gdlm_put_lock In gdlm_put_lock(), there is a small window of time in which the DFL_UNMOUNT flag has been set but the lockspace hasn't been released, yet. In that window, dlm may still call gdlm_ast() and gdlm_bast(). To prevent it from dereferencing freed glock objects, only free the glock if the lockspace has actually been released.
- Is CVE-2025-40242 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (7th percentile), an estimate of the probability of exploitation in the next 30 days.
- How do I fix CVE-2025-40242?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- Does CVE-2025-40242 have an EU (EUVD) identifier?
- Yes. CVE-2025-40242 is tracked in the ENISA EU Vulnerability Database (EUVD) as EUVD-2025-201217.
- When was CVE-2025-40242 published?
- CVE-2025-40242 was published on 2025-12-04 and last updated on 2026-06-17.
References
- https://git.kernel.org/stable/c/279bde3bbb0ac0bad5c729dfa85983d75a5d7641
- https://git.kernel.org/stable/c/28c4d9bc0708956c1a736a9e49fee71b65deee81
- https://git.kernel.org/stable/c/4913592a3358f6ec366b8346b733d5e2360b08e1
- https://git.kernel.org/stable/c/5fdc1474e678eea1700aa266c0b7c2c96f81dd0d
- https://git.kernel.org/stable/c/64c61b4ac645222fa7b724cef616c1f862a72a40