CVE-2025-40009

🗓️ 20 Oct 2025 15:26:55Reported by LinuxType

Kernel fix in task_mmu to check p->vec_buf for NULL when vec_len is zero to avoid a null pointer dereference.

Reporter	Title	Published	Views	Family All 61
Tenable Nessus	Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2025-1254)	28 Oct 202500:00	–	nessus
Tenable Nessus	openSUSE 16 Security Update : kernel (openSUSE-SU-2025-20091-1)	2 Dec 202500:00	–	nessus
Tenable Nessus	Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel vulnerabilities (USN-8095-1)	17 Mar 202600:00	–	nessus
Tenable Nessus	Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel (NVIDIA) vulnerabilities (USN-8100-1)	17 Mar 202600:00	–	nessus
Tenable Nessus	Ubuntu 24.04 LTS : Linux kernel (Azure) vulnerabilities (USN-8125-1)	27 Mar 202600:00	–	nessus
Tenable Nessus	Ubuntu 22.04 LTS : Linux kernel (Azure) vulnerabilities (USN-8126-1)	27 Mar 202600:00	–	nessus
Tenable Nessus	Ubuntu Pro FIPS-updates 24.04 LTS : Linux kernel (Azure FIPS) vulnerabilities (USN-8165-1)	13 Apr 202600:00	–	nessus
Tenable Nessus	Ubuntu 24.04 LTS : Linux kernel (Xilinx) vulnerabilities (USN-8261-1)	11 May 202600:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2025-40009	27 Oct 202500:00	–	nessus
Amazon	Important: kernel6.12	27 Oct 202500:00	–	amazon

Vulners

CNA

Node

linux linux_kernelRange6.7–6.12.50

linux linux_kernelRange6.13.0–6.16.10

linux linux_kernelRange6.17.0≥

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/proc/task_mmu.c"
    ],
    "versions": [
      {
        "version": "52526ca7fdb905a768a93f8faa418e9b988fc34b",
        "lessThan": "ca988dcdc6683ecd9de5f525ce469588a9141c21",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "52526ca7fdb905a768a93f8faa418e9b988fc34b",
        "lessThan": "a2cb8818a3d915cd33a1e8b2babc1bb0c34862c3",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "52526ca7fdb905a768a93f8faa418e9b988fc34b",
        "lessThan": "28aa29986dde79e8466bc87569141291053833f5",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/proc/task_mmu.c"
    ],
    "versions": [
      {
        "version": "6.7",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.7",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.50",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.16.10",
        "lessThanOrEqual": "6.16.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.17",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/ca988dcdc6683ecd9de5f525ce469588a9141c21
git	www.git.kernel.org/stable/c/a2cb8818a3d915cd33a1e8b2babc1bb0c34862c3
git	www.git.kernel.org/stable/c/28aa29986dde79e8466bc87569141291053833f5

11 May 2026 21:40Current

5.9Medium risk

Vulners AI Score5.9

EPSS0.00024