CVE-2025-40028

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17.0-rc6-dirty

Description The Linux kernel contains a flaw in the binder subsystem related to bitmap handling. A process attempting to expand its proc->dmap may experience a double-free error when a bitmap allocation fails. This occurs because dbitmap free() is called twice for the same bitmap, once during the allocation failure in dbitmap grow() and again when the process terminates. This can lead to system instability. The issue is triggered within the binder proc dec tmpref function.

Recommendations Update to a version newer than 6.17.0-rc6-dirty.