PT-2025-49377 · Linux+3 · Linux Kernel+3

Published

2025-12-06

·

Updated

2026-03-13

·

CVE-2025-40276

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The Linux kernel contains a flaw within the drm/panthor subsystem related to shared memory (shmem) handling. Specifically, the shmem layer zeroes out new pages using cached mappings. Without a CPU flush operation, dirty cachelines may remain, potentially leading to data leaks or asynchronous buffer corruption when these cachelines are evicted. This issue affects the process of mapping buffers in a CPU-uncached manner.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2025-40276
OPENSUSE-SU-2026:20145-1
SUSE-SU-2026:0278-1
SUSE-SU-2026:0281-1
SUSE-SU-2026:0315-1
SUSE-SU-2026:20207-1
SUSE-SU-2026:20220-1
SUSE-SU-2026:20228-1
USN-8029-1
USN-8029-2
USN-8029-3
USN-8030-1
USN-8048-1

Affected Products

Debian
Linuxmint
Linux Kernel
Ubuntu