CVE-2025-40031

NONE EPSS 9.3%
Published Oct 28, 20258mo ago · Modified Jun 17, 20262w ago
Find Similar
Published Oct 28, 2025 8mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: tee: fix register_shm_helper() In register_shm_helper(), fix incorrect error handling for a call to iov_iter_extract_pages(). A case is missing for when iov_iter_extract_pages() only got some pages and return a number larger than 0, but not the requested amount. This fixes a possible NULL pointer dereference following a bad input from ioctl(TEE_IOC_SHM_REGISTER) where parts of the buffer isn't mapped.

Threat Intelligence

EPSS Exploit Probability
9.3% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 3

  • git.kernel.org https://git.kernel.org/stable/c/6a7874ab814ce12003c46a92f7afc9b035c8e8e9
  • git.kernel.org https://git.kernel.org/stable/c/9338093db954918558677a468d32e77041c65167
  • git.kernel.org https://git.kernel.org/stable/c/d5cf5b37064b1699d946e8b7ab4ac7d7d101814c

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.