CVE-2025-40048

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s uio hv generic driver related to interrupt mask handling. The driver incorrectly manages the interrupt mask, potentially causing hangs. Specifically, the driver attempts to set the interrupt mask, while the intended behavior is for user space to fully control it. This can lead to a race condition where an interrupt is missed, resulting in processes waiting indefinitely in a pread() call. This issue can occur when the host adds a message to the inbound ring buffer without generating an interrupt, and the user space code subsequently sets the interrupt mask to 0, expecting an interrupt that never arrives. A similar race condition can occur if hv uio channel cb() sets the interrupt mask to 1 while user space is emptying the inbound ring buffer.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.