cve 2025 40071

CVE-2025-40071 is a Linux kernel vulnerability in the n_gsm tty driver that can cause a deadlock when handling Modem Status Command (MSC) responses. The issue arises from a timing and protocol-handling error that hangs the input processing path, leading to system availability risks. A fix was applied in October to prevent the driver from waiting indefinitely for an MSC response. This vulnerability is relevant for systems using GSM multiplexing over serial connections, often found in embedded or industrial environments. Discussions on WindowsForum.com cover the technical details of the deadlock, the affected code in drivers/tty, and the implications for system stability.