CVE-2025-40180 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop The cleanup loop was starting at the wrong array index, causing out-of-bounds access. Start the loop at the correct index for zero-indexed arrays to prevent accessing memory beyond the allocated array bounds.

PUBLISHED Reserved 2025-04-16 | Published 2025-11-12 | Updated 2025-12-01 | Assigner Linux

Product status

Default status

unaffected

4981b82ba2ff87df6a711fcd7a233c615df5fc79 (git) before cd0cbf2713f6e027ebba867cb7409ae345a31312

affected

4981b82ba2ff87df6a711fcd7a233c615df5fc79 (git) before ab96f08ecedd263ecaab9df8455bfb23b07fdcc2

affected

4981b82ba2ff87df6a711fcd7a233c615df5fc79 (git) before 0aead8197fc1a85b0a89646e418feb49a564b029

affected

Default status

affected

5.1

affected

Any version before 5.1

unaffected

6.12.54 (semver)

unaffected

6.17.4 (semver)

unaffected

6.18 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/cd0cbf2713f6e027ebba867cb7409ae345a31312

git.kernel.org/...c/ab96f08ecedd263ecaab9df8455bfb23b07fdcc2

git.kernel.org/...c/0aead8197fc1a85b0a89646e418feb49a564b029

cve.org (CVE-2025-40180)

nvd.nist.gov (CVE-2025-40180)

Download JSON

help @ threatint.eu