CVE-2025-40166

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the drm/xe/guc subsystem. Specifically, the issue relates to the handling of exec queue deregistration when the GuC (Graphics Unit Controller) is not running. If the driver is forced to unbind while an exec queue is still active, the exec destroy() function may be called after the GuC has stopped and communication has been disabled. This prevents proper cleanup of exec queue resources, potentially leading to resource leaks and system instability. The fix involves directly releasing resources when the GuC is not running and utilizing xe uc fw is running() instead of xe guc ct enabled() to account for potential CT (Command Transactor) state changes during VF (Virtual Function) migration. A failure dmesg log indicates a GUC ID manager unclean error.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.