CVE-2025-40081

Summary

In the Linux kernel, the following vulnerability has been resolved:

perf: arm_spe: Prevent overflow in PERF_IDX2OFF()

Cast nr_pages to unsigned long to avoid overflow when handling large AUX buffer sizes (>= 2 GiB).

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd5d9696b03808bc6be723cc85288c912c3a05606 < 656e9a5d69acdd1b20462f4a33378b90ddcb9626affected
LinuxLinuxd5d9696b03808bc6be723cc85288c912c3a05606 < 9c045d4501f7f70724a3bbb561f4f22d292bbfe6affected
LinuxLinuxd5d9696b03808bc6be723cc85288c912c3a05606 < 5d01f2b81568289443d22f1e13a363f829de6343affected
LinuxLinuxd5d9696b03808bc6be723cc85288c912c3a05606 < 7500384d3c9587593d75ded3b006835e7aa73ef8affected
LinuxLinuxd5d9696b03808bc6be723cc85288c912c3a05606 < 379cae2cb982f571cda9493ac573ab71125fd299affected
LinuxLinuxd5d9696b03808bc6be723cc85288c912c3a05606 < 1a19ba8e1f4ff24ece8ca69b79df8442c431db90affected
LinuxLinuxd5d9696b03808bc6be723cc85288c912c3a05606 < e516cfd19b0f4c774a57b17fb43a7f41991f0735affected
LinuxLinuxd5d9696b03808bc6be723cc85288c912c3a05606 < a29fea30dd93da16652930162b177941abd8c75eaffected
LinuxLinux4.15affected
LinuxLinux0 < 4.15unaffected
LinuxLinux5.4.301 <= 5.4.*unaffected
LinuxLinux5.10.246 <= 5.10.*unaffected
LinuxLinux5.15.195 <= 5.15.*unaffected
LinuxLinux6.1.156 <= 6.1.*unaffected
LinuxLinux6.6.112 <= 6.6.*unaffected
LinuxLinux6.12.53 <= 6.12.*unaffected
LinuxLinux6.17.3 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References