CVE-2025-40263

🗓️ 04 Dec 2025 16:08:23Reported by LinuxType

Linux kernel fix for input cros_ec_keyb invalid memory access when ckdev->idev is NULL.

Reporter	Title	Published	Views	Family All 186
AstraLinux	Astra Linux - уязвимость в linux-5.10, linux-6.1	20 May 202605:53	–	astralinux
Circl	CVE-2025-40263	2 Jan 202621:50	–	circl
CNNVD	Linux kernel 安全漏洞	4 Dec 202500:00	–	cnnvd
Cvelist	CVE-2025-40263 Input: cros_ec_keyb - fix an invalid memory access	4 Dec 202516:08	–	cvelist
Debian	[SECURITY] [DLA 4404-1] linux security update	12 Dec 202513:38	–	debian
Debian	[SECURITY] [DLA 4436-1] linux-6.1 security update	14 Jan 202613:50	–	debian
Debian CVE	CVE-2025-40263	4 Dec 202516:08	–	debiancve
Tenable Nessus	Debian dla-4404 : ata-modules-5.10.0-35-armmp-di - security update	12 Dec 202500:00	–	nessus
Tenable Nessus	Debian dla-4436 : linux-config-6.1 - security update	14 Jan 202600:00	–	nessus
Tenable Nessus	openSUSE 16 Security Update : kernel (openSUSE-SU-2026:20145-1)	4 Feb 202600:00	–	nessus

Vulners

CNA

Node

linux linux_kernelRange5.19–6.1.159

linux linux_kernelRange6.2.0–6.6.118

linux linux_kernelRange6.7.0–6.12.60

linux linux_kernelRange6.13.0–6.17.10

linux linux_kernelRange6.18.0≥

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/input/keyboard/cros_ec_keyb.c"
    ],
    "versions": [
      {
        "version": "ca1eadbfcd36bec73f2a2111c28e8c7e9e8ae6c0",
        "lessThan": "d74864291cb8bd784d44d1d02e87109cf88666bb",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ca1eadbfcd36bec73f2a2111c28e8c7e9e8ae6c0",
        "lessThan": "9cf59f4724a9ee06ebb06c76b8678ac322e850b7",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ca1eadbfcd36bec73f2a2111c28e8c7e9e8ae6c0",
        "lessThan": "6d81068685154535af06163eb585d6d9663ec7ec",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ca1eadbfcd36bec73f2a2111c28e8c7e9e8ae6c0",
        "lessThan": "2d251c15c27e2dd16d6318425d2f7260cbd47d39",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ca1eadbfcd36bec73f2a2111c28e8c7e9e8ae6c0",
        "lessThan": "e08969c4d65ac31297fcb4d31d4808c789152f68",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/input/keyboard/cros_ec_keyb.c"
    ],
    "versions": [
      {
        "version": "5.19",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.19",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.159",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.118",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.60",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.17.10",
        "lessThanOrEqual": "6.17.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/9cf59f4724a9ee06ebb06c76b8678ac322e850b7
git	www.git.kernel.org/stable/c/2d251c15c27e2dd16d6318425d2f7260cbd47d39
git	www.git.kernel.org/stable/c/d74864291cb8bd784d44d1d02e87109cf88666bb
git	www.git.kernel.org/stable/c/e08969c4d65ac31297fcb4d31d4808c789152f68
git	www.git.kernel.org/stable/c/6d81068685154535af06163eb585d6d9663ec7ec
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-253495.html

02 Jun 2026 14:16Current

6Medium risk

Vulners AI Score6

EPSS0.00037