CVE-2025-40266

UNKNOWN 0.0

KVM: arm64: Check the untrusted offset in FF-A memory share

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Check the untrusted offset in FF-A memory share Verify the offset to prevent OOB access in the hypervisor FF-A buffer in case an untrusted large enough value [U32_MAX - sizeof(struct ffa_composite_mem_region) + 1, U32_MAX] is set from the host kernel.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Dec 4, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

6211753fdfd05af9e08f54c8d0ba3ee516034878 < fc3139d9f4c1fe1c7d5f25f99676bd8e9c6a1041 6211753fdfd05af9e08f54c8d0ba3ee516034878 < bc1909ef38788f2ee3d8011d70bf029948433051 6211753fdfd05af9e08f54c8d0ba3ee516034878 < f9f1aed6c8a3427900da3121e1868124854569c3 6211753fdfd05af9e08f54c8d0ba3ee516034878 < 103e17aac09cdd358133f9e00998b75d6c1f1518

Linux / Linux

3.11

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/fc3139d9f4c1fe1c7d5f25f99676bd8e9c6a1041 git.kernel.org: https://git.kernel.org/stable/c/bc1909ef38788f2ee3d8011d70bf029948433051 git.kernel.org: https://git.kernel.org/stable/c/f9f1aed6c8a3427900da3121e1868124854569c3 git.kernel.org: https://git.kernel.org/stable/c/103e17aac09cdd358133f9e00998b75d6c1f1518