CVE-2025-40172

EPSS 0.03%
Veröffentlicht 12.11.2025 10:53:49
Zuletzt bearbeitet 12.11.2025 16:19:12
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages()

Currently, if find_and_map_user_pages() takes a DMA xfer request from the
user with a length field set to 0, or in a rare case, the host receives
QAIC_TRANS_DMA_XFER_CONT from the device where resources->xferred_dma_size
is equal to the requested transaction size, the function will return 0
before allocating an sgt or setting the fields of the dma_xfer struct.
In that case, encode_addr_size_pairs() will try to access the sgt which
will lead to a general protection fault.

Return an EINVAL in case the user provides a zero-sized ALP, or the device
requests continuation after all of the bytes have been transferred.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 48b1d42286bfef7628b1d6c8c28d4e456c90f725

Version 96d3c1cadedb6ae2e8965e19cd12caa244afbd9c

Status affected

Version < 551f1dfbcb7f3e6ed07f9d6c8c1c64337fcd0ede

Version 96d3c1cadedb6ae2e8965e19cd12caa244afbd9c

Status affected

Version < 1ab9733d14cc9987cc5dcd1f0ad1f416e302e2e6

Version 96d3c1cadedb6ae2e8965e19cd12caa244afbd9c

Status affected

Version < 11f08c30a3e4157305ba692f1d44cca5fc9a8fca

Version 96d3c1cadedb6ae2e8965e19cd12caa244afbd9c

Status affected

Version d410a96e5cb8c1ec7049c83f2edcd8bbfaf5d9b3

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.5

Status affected

Version < 6.5

Version 0

Status unaffected

Version <= 6.6.*

Version 6.6.114

Status unaffected

Version <= 6.12.*

Version 6.12.55

Status unaffected

Version <= 6.17.*

Version 6.17.5

Status unaffected

Version <= *

Version 6.18

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.062

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/48b1d42286bfef7628b1d6c8c28d4e456c90f725

https://git.kernel.org/stable/c/551f1dfbcb7f3e6ed07f9d6c8c1c64337fcd0ede

https://git.kernel.org/stable/c/1ab9733d14cc9987cc5dcd1f0ad1f416e302e2e6

https://git.kernel.org/stable/c/11f08c30a3e4157305ba692f1d44cca5fc9a8fca

https://nvd.nist.gov/vuln/detail/CVE-2025-40172

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-40172

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-40172

EUVD