CVE-2025-40175

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> idpf: cleanup remaining SKBs in PTP flows<br /> <br /> When the driver requests Tx timestamp value, one of the first steps is<br /> to clone SKB using skb_get. It increases the reference counter for that<br /> SKB to prevent unexpected freeing by another component.<br /> However, there may be a case where the index is requested, SKB is<br /> assigned and never consumed by PTP flows - for example due to reset during<br /> running PTP apps.<br /> <br /> Add a check in release timestamping function to verify if the SKB<br /> assigned to Tx timestamp latch was freed, and release remaining SKBs.