CVE-2025-40180

Summary

In the Linux kernel, the following vulnerability has been resolved:

mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop

The cleanup loop was starting at the wrong array index, causing out-of-bounds access. Start the loop at the correct index for zero-indexed arrays to prevent accessing memory beyond the allocated array bounds.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux4981b82ba2ff87df6a711fcd7a233c615df5fc79 < cd0cbf2713f6e027ebba867cb7409ae345a31312affected
LinuxLinux4981b82ba2ff87df6a711fcd7a233c615df5fc79 < ab96f08ecedd263ecaab9df8455bfb23b07fdcc2affected
LinuxLinux4981b82ba2ff87df6a711fcd7a233c615df5fc79 < 0aead8197fc1a85b0a89646e418feb49a564b029affected
LinuxLinux5.1affected
LinuxLinux0 < 5.1unaffected
LinuxLinux6.12.54 <= 6.12.*unaffected
LinuxLinux6.17.4 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References