CVE-2025-40161
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
mailbox: zynqmp-ipi: Fix SGI cleanup on unbind
The driver incorrectly determines SGI vs SPI interrupts by checking IRQ number < 16, which fails with dynamic IRQ allocation. During unbind, this causes improper SGI cleanup leading to kernel crash.
Add explicit irq_type field to pdata for reliable identification of SGI interrupts (type-2) and only clean up SGI resources when appropriate.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 6ffb1635341bec50fa9540ae7827d1e5d75ae0b0 < 1ee147efee68be00203b1fee6479911debb1edb2 | affected |
| Linux | Linux | 6ffb1635341bec50fa9540ae7827d1e5d75ae0b0 < 32bf7c6e01f5ba17a53ba236a770bd0274cefdf4 | affected |
| Linux | Linux | 6ffb1635341bec50fa9540ae7827d1e5d75ae0b0 < bb160e791ab15b89188a7a19589b8e11f681bef3 | affected |
| Linux | Linux | 6.10 | affected |
| Linux | Linux | 0 < 6.10 | unaffected |
| Linux | Linux | 6.12.54 <= 6.12.* | unaffected |
| Linux | Linux | 6.17.4 <= 6.17.* | unaffected |
| Linux | Linux | 6.18 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/1ee147efee68be00203b1fee6479911debb1edb2
- https://git.kernel.org/stable/c/32bf7c6e01f5ba17a53ba236a770bd0274cefdf4
- https://git.kernel.org/stable/c/bb160e791ab15b89188a7a19589b8e11f681bef3
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.