Description

In the Linux kernel, the following vulnerability has been resolved: ice: ice_adapter: release xa entry on adapter allocation failure When ice_adapter_new() fails, the reserved XArray entry created by xa_insert() is not released. This causes subsequent insertions at the same index to return -EBUSY, potentially leading to NULL pointer dereferences. Reorder the operations as suggested by Przemek Kitszel: 1. Check if adapter already exists (xa_load) 2. Reserve the XArray slot (xa_reserve) 3. Allocate the adapter (ice_adapter_new) 4. Store the adapter (xa_store)

INFO

Published Date :

2025-11-12T21:56:28.561Z

Last Modified :

2025-12-01T06:19:43.239Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-40185 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-40185.

URL Resource
https://git.kernel.org/stable/c/2db687f3469dbc5c59bc53d55acafd75d530b497 cve-icon cve-icon
https://git.kernel.org/stable/c/794abb265de3e792167fe3ea0440c064c722bb84 cve-icon cve-icon
https://git.kernel.org/stable/c/7b9269de9815fc34d93dab90bd5169bacbe78e70 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025111244-CVE-2025-40185-0689@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-40185 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-40185 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact