CVE-2025-40081

In the Linux kernel, the following vulnerability has been resolved:

perf: arm_spe: Prevent overflow in PERF_IDX2OFF()

Cast nr_pages to unsigned long to avoid overflow when handling large
AUX buffer sizes (>= 2 GiB).
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
UNKNOWN
---
LinuxCNA
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
vulnerable
bullseye (security)
vulnerable
bookworm
vulnerable
bookworm (security)
vulnerable
trixie
vulnerable
trixie (security)
vulnerable
forky
vulnerable
sid
vulnerable
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/1a19ba8e1f4ff24ece8ca69b79df8442c431db90
https://git.kernel.org/stable/c/379cae2cb982f571cda9493ac573ab71125fd299
https://git.kernel.org/stable/c/5d01f2b81568289443d22f1e13a363f829de6343
https://git.kernel.org/stable/c/656e9a5d69acdd1b20462f4a33378b90ddcb9626
https://git.kernel.org/stable/c/7500384d3c9587593d75ded3b006835e7aa73ef8
https://git.kernel.org/stable/c/9c045d4501f7f70724a3bbb561f4f22d292bbfe6
https://git.kernel.org/stable/c/a29fea30dd93da16652930162b177941abd8c75e
https://git.kernel.org/stable/c/e516cfd19b0f4c774a57b17fb43a7f41991f0735