CVE-2025-40358 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: riscv: stacktrace: Disable KASAN checks for non-current tasks Unwinding the stack of a task other than current, KASAN would report "BUG: KASAN: out-of-bounds in walk_stackframe+0x41c/0x460" There is a same issue on x86 and has been resolved by the commit 84936118bdf3 ("x86/unwind: Disable KASAN checks for non-current tasks") The solution could be applied to RISC-V too. This patch also can solve the issue: https://seclists.org/oss-sec/2025/q4/23 [pjw@kernel.org: clean up checkpatch issues]

PUBLISHED Reserved 2025-04-16 | Published 2025-12-16 | Updated 2025-12-16 | Assigner Linux

Product status

Default status

unaffected

5d8544e2d0075a5f3c9a2cf27152354d54360da1 (git) before f34ba22989da61186f30a40b6a82e0b3337b96fc

affected

5d8544e2d0075a5f3c9a2cf27152354d54360da1 (git) before 27379fcc15a10d3e3780fe79ba3fc7ed1ccd78e2

affected

5d8544e2d0075a5f3c9a2cf27152354d54360da1 (git) before 2c8d2b53866fb229b438296526ef0fa5a990e5e5

affected

5d8544e2d0075a5f3c9a2cf27152354d54360da1 (git) before 060ea84a484e852b52b938f234bf9b5503a6c910

affected

Default status

affected

4.15

affected

Any version before 4.15

unaffected

6.6.117 (semver)

unaffected

6.12.58 (semver)

unaffected

6.17.8 (semver)

unaffected

6.18 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/f34ba22989da61186f30a40b6a82e0b3337b96fc

git.kernel.org/...c/27379fcc15a10d3e3780fe79ba3fc7ed1ccd78e2

git.kernel.org/...c/2c8d2b53866fb229b438296526ef0fa5a990e5e5

git.kernel.org/...c/060ea84a484e852b52b938f234bf9b5503a6c910

cve.org (CVE-2025-40358)

nvd.nist.gov (CVE-2025-40358)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.

help @ threatint.eu