CVE-2025-40193
Linux Kernel 3.9.0-6.17.3 - DoS via Unchecked Input Size in xtensa simdisk proc_write_simdisk
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in proc_write_simdisk A malicious user could pass an arbitrarily bad value to memdup_user_nul(), potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 ("netdevsim: prevent bad user input in nsim_dev_health_break_write()")
References (5)
Core 5
Core References
Scores
EPSS
0.0019
EPSS Percentile
8.5%
Details
Status
published
Products (16)
linux/Kernel
3.9.0 - 6.1.157linux
linux/Kernel
6.13.0 - 6.17.4linux
linux/Kernel
6.2.0 - 6.6.113linux
linux/Kernel
6.7.0 - 6.12.54linux
Linux/Linux
< 3.9
Linux/Linux
3.9
Linux/Linux
6.1.157 - 6.1.*
Linux/Linux
6.12.54 - 6.12.*
Linux/Linux
6.17.4 - 6.17.*
Linux/Linux
6.18
... and 6 more
Published
Nov 12, 2025
Tracked Since
Feb 18, 2026