Description

In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in proc_write_simdisk A malicious user could pass an arbitrarily bad value to memdup_user_nul(), potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 ("netdevsim: prevent bad user input in nsim_dev_health_break_write()")

INFO

Published Date :

2025-11-12T21:56:31.751Z

Last Modified :

2025-12-01T06:19:53.264Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-40193 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-40193.

URL Resource
https://git.kernel.org/stable/c/151bd88859474cdaccc1e4c8b21fbf72dbba2ab4 cve-icon cve-icon
https://git.kernel.org/stable/c/5d5f08fd0cd970184376bee07d59f635c8403f63 cve-icon cve-icon
https://git.kernel.org/stable/c/a0c2c36d864ef3676b05cfd8c58b72ee3214cb1a cve-icon cve-icon
https://git.kernel.org/stable/c/d381de7fd4cdc928ede96987dc64b133e6480dd6 cve-icon cve-icon
https://git.kernel.org/stable/c/f40405ccfb87b71175f2d5d004c0b8a0aebcc2cf cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025111245-CVE-2025-40193-6519@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-40193 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-40193 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact