Description

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm - set NULL to qm->debug.qm_diff_regs When the initialization of qm->debug.acc_diff_reg fails, the probe process does not exit. However, after qm->debug.qm_diff_regs is freed, it is not set to NULL. This can lead to a double free when the remove process attempts to free it again. Therefore, qm->debug.qm_diff_regs should be set to NULL after it is freed.

INFO

Published Date :

2025-10-28T11:48:33.961Z

Last Modified :

2025-10-28T11:48:33.961Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-40062 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-40062.

URL Resource
https://git.kernel.org/stable/c/1750f1ec143ebabdbdfa013668665c9d5042c430 cve-icon cve-icon
https://git.kernel.org/stable/c/7226a0650ad5705bd8d39a11be270fa21ed1e6a5 cve-icon cve-icon
https://git.kernel.org/stable/c/a7836260d5121949ba734e840d42a86ab4a32fcc cve-icon cve-icon
https://git.kernel.org/stable/c/a87a21a56244b8f4eb357f6bad879247005bbe38 cve-icon cve-icon
https://git.kernel.org/stable/c/f0cafb02de883b3b413d34eb079c9680782a9cc1 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025102816-CVE-2025-40062-9b53@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-40062 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-40062 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact