CVE-2025-40180

Linux Kernel 5.1-6.12.53, 6.13-6.17.3, 6.18+ - Out-of-Bounds Memory Access in zynqmp-ipi Mailbox Cleanup Loop

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop The cleanup loop was starting at the wrong array index, causing out-of-bounds access. Start the loop at the correct index for zero-indexed arrays to prevent accessing memory beyond the allocated array bounds.

Scores

EPSS 0.0019
EPSS Percentile 9.3%

Details

Status published
Products (10)
linux/Kernel 5.1.0 - 6.12.54linux
linux/Kernel 6.13.0 - 6.17.4linux
Linux/Linux < 5.1
Linux/Linux 4981b82ba2ff87df6a711fcd7a233c615df5fc79 - 0aead8197fc1a85b0a89646e418feb49a564b029
Linux/Linux 4981b82ba2ff87df6a711fcd7a233c615df5fc79 - ab96f08ecedd263ecaab9df8455bfb23b07fdcc2
Linux/Linux 4981b82ba2ff87df6a711fcd7a233c615df5fc79 - cd0cbf2713f6e027ebba867cb7409ae345a31312
Linux/Linux 5.1
Linux/Linux 6.12.54 - 6.12.*
Linux/Linux 6.17.4 - 6.17.*
Linux/Linux 6.18
Published Nov 12, 2025
Tracked Since Feb 18, 2026