CVE-2025-40033

Summary

In the Linux kernel, the following vulnerability has been resolved:

remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable()

pru_rproc_set_ctable() accessed rproc->priv before the IS_ERR_OR_NULL check, which could lead to a null pointer dereference. Move the pru assignment, ensuring we never dereference a NULL rproc pointer.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux102853400321baea2527917e6e89be33508c3e18 < 66821fdb723d55b25482a76b92d17d416efeae6baffected
LinuxLinux102853400321baea2527917e6e89be33508c3e18 < c9b6d789591f2bd57b0cbd59592493e11e029ed4affected
LinuxLinux102853400321baea2527917e6e89be33508c3e18 < f0164d89950120281f2446be9687cffa1e43dbccaffected
LinuxLinux102853400321baea2527917e6e89be33508c3e18 < d41e075b077142bb9ae5df40b9ddf9fd7821a811affected
LinuxLinux6.3affected
LinuxLinux0 < 6.3unaffected
LinuxLinux6.6.112 <= 6.6.*unaffected
LinuxLinux6.12.53 <= 6.12.*unaffected
LinuxLinux6.17.3 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References