CVE-2025-40157

Linux Kernel - Denial of Service via EDAC i10nm DIMM Enumeration

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller When loading the i10nm_edac driver on some Intel Granite Rapids servers, a call trace may appear as follows: UBSAN: shift-out-of-bounds in drivers/edac/skx_common.c:453:16 shift exponent -66 is negative ... __ubsan_handle_shift_out_of_bounds+0x1e3/0x390 skx_get_dimm_info.cold+0x47/0xd40 [skx_edac_common] i10nm_get_dimm_config+0x23e/0x390 [i10nm_edac] skx_register_mci+0x159/0x220 [skx_edac_common] i10nm_init+0xcb0/0x1ff0 [i10nm_edac] ... This occurs because some BIOS may disable a memory controller if there aren't any memory DIMMs populated on this memory controller. The DIMMMTR register of this disabled memory controller contains the invalid value ~0, resulting in the call trace above. Fix this call trace by skipping DIMM enumeration on a disabled memory controller.

Scores

EPSS 0.0022
EPSS Percentile 13.0%

Details

Status published
Products (13)
linux/Kernel 6.13.0 - 6.17.3linux
linux/Kernel 6.3.0 - 6.6.112linux
linux/Kernel 6.7.0 - 6.12.53linux
Linux/Linux < 6.3
Linux/Linux 6.12.53 - 6.12.*
Linux/Linux 6.17.3 - 6.17.*
Linux/Linux 6.18
Linux/Linux 6.3
Linux/Linux 6.6.112 - 6.6.*
Linux/Linux ba987eaaabf99b462cdfed86274e3455d5126349 - 1652f14cf3bef5a4baa232de954fc22bdcaa78fe
... and 3 more
Published Nov 12, 2025
Tracked Since Feb 18, 2026