Security Advisory

CVE-2025-40193

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-12 21:56:31

Last updated 2026-05-11 21:44:33

Assigner Linux

State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in proc_write_simdisk A malicious user could pass an arbitrarily bad value to memdup_user_nul(), potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 ("netdevsim: prevent bad user input in nsim_dev_health_break_write()")

← Browse all CVEs View on cve.org ↗