CVE-2025-40276

Linux Kernel 6.10-6.12.63, 6.13-6.17.8, 6.18 - Data Leak via Unflushed Shmem Writes in DRM Panthor

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Flush shmem writes before mapping buffers CPU-uncached The shmem layer zeroes out the new pages using cached mappings, and if we don't CPU-flush we might leave dirty cachelines behind, leading to potential data leaks and/or asynchronous buffer corruption when dirty cachelines are evicted.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/8355eea2a2e9c323021dfdcb95d7767d382123c4

Patch

https://git.kernel.org/stable/c/7a12f9c96d06b145562f76ffb20369b4692f0911

Patch

https://git.kernel.org/stable/c/576c930e5e7dcb937648490611a83f1bf0171048

Scores

EPSS 0.0003

EPSS Percentile 10.4%

Details

Status published

Products (10)

linux/Kernel 6.10.0 - 6.12.64linux

linux/Kernel 6.13.0 - 6.17.9linux

Linux/Linux < 6.10

Linux/Linux 6.10

Linux/Linux 6.12.64 - 6.12.*

Linux/Linux 6.17.9 - 6.17.*

Linux/Linux 6.18

Linux/Linux 8a1cc07578bf42d85f008316873d710ff684dd29 - 576c930e5e7dcb937648490611a83f1bf0171048

Linux/Linux 8a1cc07578bf42d85f008316873d710ff684dd29 - 7a12f9c96d06b145562f76ffb20369b4692f0911

Linux/Linux 8a1cc07578bf42d85f008316873d710ff684dd29 - 8355eea2a2e9c323021dfdcb95d7767d382123c4

Published Dec 06, 2025

Tracked Since Feb 18, 2026