CVE-2025-40266

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw in the KVM arm64 component related to memory sharing with FF-A. Insufficient validation of offsets can lead to out-of-bounds access within the hypervisor when handling FF-A buffers. Specifically, an untrusted offset value from the host kernel, within the range of [U32 MAX - sizeof(struct ffa composite mem region) + 1, U32 MAX], was not properly checked, potentially allowing for memory corruption.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

ASB-A-439862698

AZL-71422

BDU:2025-15944

CVE-2025-40266

ECHO-5F42-9A97-E0E9

MGASA-2026-0017

MGASA-2026-0018

OESA-2026-1073

OESA-2026-1077

OESA-2026-1078

OPENSUSE-SU-2026:20145-1

SUSE-SU-2026:20207-1

SUSE-SU-2026:20220-1

SUSE-SU-2026:20228-1

USN-8094-1

USN-8094-2

USN-8094-3

USN-8094-4

USN-8094-5

USN-8095-1

USN-8095-2

USN-8095-3

USN-8095-4

USN-8095-5

USN-8100-1

USN-8125-1

USN-8126-1

USN-8152-1

USN-8165-1

USN-8261-1

Affected Products

Debian

Ff-A

Kvm

Linuxmint

Linux Kernel

Ubuntu

Arm64

CVE-2025-40266

Weakness Enumeration

Related Identifiers

Affected Products

References · 1976