You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2025 40036
About this tag
CVE-2025-40036 is a Linux kernel vulnerability in the FastRPC driver, which is used on Qualcomm DSP platforms for remote procedure calls. The flaw occurs in the fastrpc_put_args function, where a copy_to_user failure can cause an early return without releasing mapped buffers. This can lead to kernel resource leaks, potentially exhausting system resources. A patch has been released to fix the issue by ensuring proper buffer release on error paths. The vulnerability affects systems using Qualcomm DSPs and the FastRPC driver, making it relevant for Linux kernel security and resource management.
The Linux kernel received a targeted fix for a resource‑management bug in the FastRPC driver after maintainers discovered a path in fastrpc_put_args that could return early on copy_to_user failure without releasing mapped buffers, potentially leaking mapping references and exhausting kernel...