Description

In the Linux kernel, the following vulnerability has been resolved: coresight: trbe: Return NULL pointer for allocation failures When the TRBE driver fails to allocate a buffer, it currently returns the error code "-ENOMEM". However, the caller etm_setup_aux() only checks for a NULL pointer, so it misses the error. As a result, the driver continues and eventually causes a kernel panic. Fix this by returning a NULL pointer from arm_trbe_alloc_buffer() on allocation failures. This allows that the callers can properly handle the failure.

INFO

Published Date :

2025-10-28T11:48:32.775Z

Last Modified :

2025-10-28T11:48:32.775Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-40060 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-40060.

URL Resource
https://git.kernel.org/stable/c/296da78494633e1ab5e2e74173a9c8683b04aa6b cve-icon cve-icon
https://git.kernel.org/stable/c/8a55c161f7f9c1aa1c70611b39830d51c83ef36d cve-icon cve-icon
https://git.kernel.org/stable/c/9768536f82600a05ce901e31ccfabd92c027ff71 cve-icon cve-icon
https://git.kernel.org/stable/c/cef047e0a55cb07906fcaae99170f19a9c0bb6c2 cve-icon cve-icon
https://git.kernel.org/stable/c/f505a165f1c7cd37b4cb6952042a5984693a4067 cve-icon cve-icon
https://git.kernel.org/stable/c/fe53a726d5edf864e80b490780cc135fc1adece9 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025102816-CVE-2025-40060-eb50@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-40060 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-40060 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact