Vulnerability Lookup

🛡️ CVE-2025-40001

⚪ Unknown ✅ No Known Exploit NVD

N/A

CVSS Score

0 Low4 Medium7 High9 Critical10

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: mvsas: Fix use-after-free bugs in mvs_work_queue During the detaching of Marvell's SAS/SATA controller, the original code calls cancel_delayed_work() in mvs_free() to cancel the delayed work item mwq->work_q. However, if mwq->work_q is already running, the cancel_delayed_work() may fail to cancel it. This can lead to use-after-free scenarios where mvs_free() frees the mvs_info while mvs_work_queue() is still executing and attempts to access the already-freed mvs_info. A typical race condition is illustrated below: CPU 0 (remove) | CPU 1 (delayed work callback) mvs_pci_remove() | mvs_free() | mvs_work_queue() cancel_delayed_work() | kfree(mvi) | | mvi-> // UAF Replace cancel_delayed_work() with cancel_delayed_work_sync() to ensure that the delayed work item is properly canceled and any executing delayed work item completes before the mvs_info is deallocated. This bug was found by static analysis.

Details

Severity Unknown

CVSS Score N/A

CVSS Vector N/A

CWE N/A

Public Exploit ✅ No

Source NVD

Published 2025-10-18

Updated 2026-06-02

Modified 2026-04-02

Fix URL N/A

Affected Packages

Software	From version	Fixed in
kernel	6.13.0	6.17.4
unknown	—	—

References

WEB https://git.kernel.org/stable/c/00d3af40b158ebf7c7db2b3bbb1598a54bf28127

WEB https://git.kernel.org/stable/c/3c90f583d679c81a5a607a6ae0051251b6dee35b

WEB https://git.kernel.org/stable/c/60cd16a3b7439ccb699d0bf533799eeb894fd217

WEB https://git.kernel.org/stable/c/6ba7e73cafd155a5d3abf560d315f0bab2b9d89f

WEB https://git.kernel.org/stable/c/a6f68f219d4d4b92d7c781708d4afc4cc42961ec

WEB https://git.kernel.org/stable/c/aacd1777d4a795c387a20b9ca776e2c1225d05d7

WEB https://git.kernel.org/stable/c/c2c35cb2a31844f84f21ab364b38b4309d756d42

WEB https://git.kernel.org/stable/c/feb946d2fc9dc754bf3d594d42cd228860ff8647

ADVISORY https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40001.json

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2025-40001

PACKAGE https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

🔗 NVD 🔗 Mitre

Similar Threats

Unknown ALSA-2023:2458
Unknown ALSA-2023:1703
Unknown ALSA-2023:1566
Unknown ALSA-2023:1470
Unknown ALSA-2023:0951

Exploit Protection

Help block exploit attempts

BotEraser is designed to detect and help reduce malicious bot traffic that may target known vulnerabilities on your site.

Try BotEraser Free →

No credit card required · Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.

Help block exploit attempts

Company

Resources

Services

Trusted

Subscribe