Description

In the Linux kernel, the following vulnerability has been resolved: misc: pci_endpoint_test: Fix array underflow in pci_endpoint_test_ioctl() Commit eefb83790a0d ("misc: pci_endpoint_test: Add doorbell test case") added NO_BAR (-1) to the pci_barno enum which, in practical terms, changes the enum from an unsigned int to a signed int. If the user passes a negative number in pci_endpoint_test_ioctl() then it results in an array underflow in pci_endpoint_test_bar().

INFO

Published Date :

2025-11-12T10:23:17.851Z

Last Modified :

2025-12-01T06:18:20.923Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-40117 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-40117.

URL Resource
https://git.kernel.org/stable/c/1ad82f9db13d85667366044acdfb02009d576c5a cve-icon cve-icon
https://git.kernel.org/stable/c/6df3687922570f753574c40b35e83b26b32292d0 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025111251-CVE-2025-40117-82a4@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-40117 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-40117 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact