CVE-2025-40334

Linux Kernel 6.16-6.17.8 - Memory Corruption via AMDGPU User Queue Buffer Validation

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate userq buffer virtual address and size It needs to validate the userq object virtual address to determine whether it is residented in a valid vm mapping.

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/5a577de86c4a1c67ca405571d6ef84e65c6897d1

Patch

https://git.kernel.org/stable/c/9e46b8bb0539d7bc9a9e7b3072fa4f6082490392

Scores

EPSS 0.0003

EPSS Percentile 8.0%

Details

Status published

Products (8)

linux/Kernel 6.16.0 - 6.17.8linux

Linux/Linux < 6.16

Linux/Linux 5501117d24a38dadff3dbd8d3102559b27929668 - 5a577de86c4a1c67ca405571d6ef84e65c6897d1

Linux/Linux 5501117d24a38dadff3dbd8d3102559b27929668 - 9e46b8bb0539d7bc9a9e7b3072fa4f6082490392

Linux/Linux 6.16

Linux/Linux 6.17.8 - 6.17.*

Linux/Linux 6.18

Linux/Linux fbf136b932358da1c65eb6fedd064a33a7a96aaa - 9e46b8bb0539d7bc9a9e7b3072fa4f6082490392

Published Dec 09, 2025

Tracked Since Feb 18, 2026