Description

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix possible map leak in fastrpc_put_args copy_to_user() failure would cause an early return without cleaning up the fdlist, which has been updated by the DSP. This could lead to map leak. Fix this by redirecting to a cleanup path on failure, ensuring that all mapped buffers are properly released before returning.

INFO

Published Date :

2025-10-28T11:48:17.630Z

Last Modified :

2025-10-28T11:48:17.630Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-40036 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-40036.

URL Resource
https://git.kernel.org/stable/c/3ad42dc66445df6977cf4be0c06f1a655299ce6c cve-icon cve-icon
https://git.kernel.org/stable/c/78d33a041555db03903e8037fd053ed74fbd88cb cve-icon cve-icon
https://git.kernel.org/stable/c/a085658264d0c8d4f795d4631f77d7289a021de9 cve-icon cve-icon
https://git.kernel.org/stable/c/c000f65f0ac93d9f9cc69a230d372f6ca93e4879 cve-icon cve-icon
https://git.kernel.org/stable/c/da1ba64176e0138f2bfa96f9e43e8c3640d01e1e cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025102811-CVE-2025-40036-a568@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-40036 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-40036 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact