CVE-2025-40340

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists within the kernel’s DRM/XE subsystem, specifically in the xe gem fault function, which can lead to an oops (kernel panic) during the execution of core hotunplug tests. This occurs when a process attempts to map memory, unlocks due to fault retry logic, and subsequently runs out of available process memory. This results in ttm bo vm dummy page() returning VM FAULT NOPAGE, leading to a null pointer dereference within mem type is vram() because the tbo->resource is NULL. The issue was observed during testing with the realtime kernel without debug options enabled, following a core hotunplug unbind-rebind operation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.