-

CVE-2025-40111

EPSS 0.06%
Veröffentlicht 12.11.2025 01:07:25
Zuletzt bearbeitet 12.11.2025 16:19:12
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

drm/vmwgfx: Fix Use-after-free in validation

Nodes stored in the validation duplicates hashtable come from an arena
allocator that is cleared at the end of vmw_execbuf_process. All nodes
are expected to be cleared in vmw_validation_drop_ht but this node escaped
because its resource was destroyed prematurely.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 1822e5287b7dfa59d0af966756ebf1dc652b60ee

Version 64ad2abfe9a628ce79859d072704bd1ef7682044

Status affected

Version < fb7165e5f3b3b10721ff70553583ad12e90e447a

Version 64ad2abfe9a628ce79859d072704bd1ef7682044

Status affected

Version < 4c918f9d1ccccc0e092f43dcb2d8266f54d7340b

Version 64ad2abfe9a628ce79859d072704bd1ef7682044

Status affected

Version < 9a8eaca539708ca532747f606d231f70e684e8ca

Version 64ad2abfe9a628ce79859d072704bd1ef7682044

Status affected

Version < 867bda5d95d36f10da398fd4409e21c7002b2332

Version 64ad2abfe9a628ce79859d072704bd1ef7682044

Status affected

Version < 655a2f29bfc21105c80bf8a7d7aafa6eca8b4496

Version 64ad2abfe9a628ce79859d072704bd1ef7682044

Status affected

Version < 65608e991c2d771c13404e5c7ae122ac3c3357a4

Version 64ad2abfe9a628ce79859d072704bd1ef7682044

Status affected

Version < dfe1323ab3c8a4dd5625ebfdba44dc47df84512a

Version 64ad2abfe9a628ce79859d072704bd1ef7682044

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 4.20

Status affected

Version < 4.20

Version 0

Status unaffected

Version <= 5.4.*

Version 5.4.301

Status unaffected

Version <= 5.10.*

Version 5.10.246

Status unaffected

Version <= 5.15.*

Version 5.15.195

Status unaffected

Version <= 6.1.*

Version 6.1.157

Status unaffected

Version <= 6.6.*

Version 6.6.113

Status unaffected

Version <= 6.12.*

Version 6.12.54

Status unaffected

Version <= 6.17.*

Version 6.17.4

Status unaffected

Version <= *

Version 6.18

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.06%	0.191

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/1822e5287b7dfa59d0af966756ebf1dc652b60ee

https://git.kernel.org/stable/c/fb7165e5f3b3b10721ff70553583ad12e90e447a

https://git.kernel.org/stable/c/4c918f9d1ccccc0e092f43dcb2d8266f54d7340b

https://git.kernel.org/stable/c/9a8eaca539708ca532747f606d231f70e684e8ca

https://git.kernel.org/stable/c/867bda5d95d36f10da398fd4409e21c7002b2332

https://git.kernel.org/stable/c/655a2f29bfc21105c80bf8a7d7aafa6eca8b4496

https://git.kernel.org/stable/c/65608e991c2d771c13404e5c7ae122ac3c3357a4

https://git.kernel.org/stable/c/dfe1323ab3c8a4dd5625ebfdba44dc47df84512a

https://nvd.nist.gov/vuln/detail/CVE-2025-40111

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-40111

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-40111

EUVD