CVE-2025-40193
EPSS 0.03%發布日:2025/11/12修改日:2026/4/28
描述
In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in proc_write_simdisk A malicious user could pass an arbitrarily bad value to memdup_user_nul(), potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 ("netdevsim: prevent bad user input in nsim_dev_health_break_write()")
受影響套件(2)
- Debian/linuxfrom 0
- Debian/linux-6.1from 0, < 6.1.158-1~deb11u1