What is CVE-2025-40314?

CVE-2025-40314 is a unscored severity Linux kernel vulnerability, affecting Linux kernel versions from 5.3 onward and patched in 5.15.197, 6.1.159, 6.6.117 and others. CVE-2025-40314 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2025-40314?

CVE-2025-40314 has a CVSS score of pending NVD analysis out of 10, rated awaiting scoring severity.

Is there a patch available for CVE-2025-40314?

Yes, CVE-2025-40314 has been patched. Fixed versions include 5.15.197, 6.1.159, 6.6.117 and others. If you are running Linux kernel 5.3 or later up to the fix versions, apply the relevant patch for your kernel branch.

Is CVE-2025-40314 actively exploited?

CVE-2025-40314 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

CVE-2025-40314

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget In the __cdnsp_gadget_init() and cdnsp_gadget_exit() functions, the gadget structure (pdev->gadget) was freed before its endpoints. The endpoints are linked via the ep_list in the gadget structure. Freeing the gadget first leaves dangling pointers in the endpoint list. When the endpoints are subsequently freed, this results in a use-after-free. Fix: By separating the usb_del_gadget_udc() operation into distinct "del" and "put" steps, cdnsp_gadget_free_endpoints() can be executed prior to the final release of the gadget structure with usb_put_gadget(). A patch similar to bb9c74a5bd14("usb: dwc3: gadget: Free gadget structure only after freeing endpoints").

Package Linux Kernel

Published 2025-12-08

Last modified 2026-04-15

Patch available

Yes

Affected versions

Linux kernel versions 5.3 and later are affected. Fixed in 5.15.197, 6.1.159, 6.6.117, 6.12.58, 6.17.8, 6.18 and their respective stable series.

Affected from

≥ 5.3

Fixed in

✓ 5.15.197 5.15.x ✓ 6.1.159 6.1.x ✓ 6.6.117 6.6.x ✓ 6.12.58 6.12.x ✓ 6.17.8 6.17.x ✓ 6.18

References

The following references provide additional information about CVE-2025-40314 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Kernel patch commit
https://git.kernel.org/stable/c/0cf9a50af91fbdac3849f8d950e883a3eaa3ecea
Patch
Kernel patch commit
https://git.kernel.org/stable/c/37158ce6ba964b62d1e3eebd11f03c6900a52dd1
Patch
Kernel patch commit
https://git.kernel.org/stable/c/87c5ff5615dc0a37167e8faf3adeeddc6f1344a3
Patch

6 patch commits total View all on NVD

Frequently asked questions

What is CVE-2025-40314?

CVE-2025-40314 is a unscored severity Linux kernel vulnerability . It affects Linux kernel versions from 5.3 onward and has been patched in 5.15.197, 6.1.159, 6.6.117 and others. CVE-2025-40314 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
Is there a patch available for CVE-2025-40314?

Yes — CVE-2025-40314 has been patched. Fixed versions include 5.15.197, 6.1.159, 6.6.117 and others. If you are running Linux kernel 5.3 or later up to the fix versions, apply the relevant patch for your kernel branch.
Is CVE-2025-40314 actively exploited?

No — CVE-2025-40314 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.