CVE-2025-40005

🗓️ 20 Oct 2025 15:26:52Reported by LinuxType

Cadence QuadSPI driver uses refcount to safely handle unbind during busy, preventing crashes.

Reporter	Title	Published	Views	Family All 98
ATTACKERKB	CVE-2025-40005	20 Oct 202515:26	–	attackerkb
CBLMariner	CVE-2025-40005 affecting package kernel for versions less than 6.6.126.1-1	10 Mar 202622:56	–	cbl_mariner
Chainguard	CVE-2025-40005 vulnerabilities	10 Apr 202602:13	–	cgr
Circl	CVE-2025-40005	3 Dec 202514:14	–	circl
CNNVD	Linux kernel 安全漏洞	20 Oct 202500:00	–	cnnvd
Cvelist	CVE-2025-40005 spi: cadence-quadspi: Implement refcount to handle unbind during busy	20 Oct 202515:26	–	cvelist
Debian	[SECURITY] [DLA 4561-1] linux-6.1 security update	2 May 202608:40	–	debian
Debian	[SECURITY] [DSA 6238-1] linux security update	30 Apr 202620:05	–	debian
Debian	[SECURITY] [DSA 6243-1] linux security update	1 May 202619:10	–	debian
Debian CVE	CVE-2025-40005	20 Oct 202515:26	–	debiancve

NVD

Vulners

CNA

Node

linux linux_kernelRange5.9–6.6.125

linux linux_kernelRange6.7–6.16.10

linux linux_kernelMatch6.17rc1

linux linux_kernelMatch6.17rc2

linux linux_kernelMatch6.17rc3

linux linux_kernelMatch6.17rc4

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/spi/spi-cadence-quadspi.c"
    ],
    "versions": [
      {
        "version": "a314f6367787ee1d767df9a2120f17e4511144d0",
        "lessThan": "8ce3ebbe5c718940b4e94f5c25f5720223f893f8",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a314f6367787ee1d767df9a2120f17e4511144d0",
        "lessThan": "56787f4a75907ae99b5f5842b756fa68e2482f6d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a314f6367787ee1d767df9a2120f17e4511144d0",
        "lessThan": "8df235f768cea7a5829cb02525622646eb0df5f5",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a314f6367787ee1d767df9a2120f17e4511144d0",
        "lessThan": "65ed52200080eafce3eead05cf22ce01238defca",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a314f6367787ee1d767df9a2120f17e4511144d0",
        "lessThan": "b7ec8a2b094a33d0464958c2cbf75b8f229098b0",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a314f6367787ee1d767df9a2120f17e4511144d0",
        "lessThan": "7446284023e8ef694fb392348185349c773eefb3",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/spi/spi-cadence-quadspi.c"
    ],
    "versions": [
      {
        "version": "5.9",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.9",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.209",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.167",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.125",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.78",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.16.10",
        "lessThanOrEqual": "6.16.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.17",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/7446284023e8ef694fb392348185349c773eefb3
git	www.git.kernel.org/stable/c/65ed52200080eafce3eead05cf22ce01238defca
git	www.git.kernel.org/stable/c/8ce3ebbe5c718940b4e94f5c25f5720223f893f8
git	www.git.kernel.org/stable/c/8df235f768cea7a5829cb02525622646eb0df5f5
git	www.git.kernel.org/stable/c/56787f4a75907ae99b5f5842b756fa68e2482f6d
git	www.git.kernel.org/stable/c/b7ec8a2b094a33d0464958c2cbf75b8f229098b0

01 Jun 2026 17:16Current

6Medium risk

Vulners AI Score6

CVSS 3.15.5

EPSS0.00035