CVE-2025-40332

EPSS 0.02%
Veröffentlicht 09.12.2025 04:09:49
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

drm/amdkfd: Fix mmap write lock not release

In the Linux kernel, the following vulnerability has been resolved:

drm/amdkfd: Fix mmap write lock not release

If mmap write lock is taken while draining retry fault, mmap write lock
is not released because svm_range_restore_pages calls mmap_read_unlock
then returns. This causes deadlock and system hangs later because mmap
read or write lock cannot be taken.

Downgrade mmap write lock to read lock if draining retry fault fix this
bug.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 6

CNA 2 VulnDex Vulnerability Enrichment 11

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version e64be12f8401819662e608efa247638b61d023cd

Version < e2105ba1c262dcaa9573f11844b6e1e1ca762c3f

Status affected

Version f844732e3ad9c4b78df7436232949b8d2096d1a6

Version < f7569ef1cf978aa87aa81b5e9bf40a77497f3685

Status affected

Version f844732e3ad9c4b78df7436232949b8d2096d1a6

Version < 7574f30337e19045f03126b4c51f525b84e5049e

Status affected

Version 177660d7ecb34298dab5f0d1efc7e8b02f934551

Status affected

Version 5a3c09bd25cc0a55ec9c048710d379fa2c84b4e7

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.15

Status affected

Version 0

Version < 6.15

Status unaffected

Version <= 6.12.*

Version 6.12.58

Status unaffected

Version <= 6.17.*

Version 6.17.8

Status unaffected

Version <= *

Version 6.18

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.056

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/e2105ba1c262dcaa9573f11844b6e1e1ca762c3f

https://git.kernel.org/stable/c/f7569ef1cf978aa87aa81b5e9bf40a77497f3685

https://git.kernel.org/stable/c/7574f30337e19045f03126b4c51f525b84e5049e

https://nvd.nist.gov/vuln/detail/CVE-2025-40332

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-40332

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-40332

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-40332