CVE-2025-40033

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

28/10/2025

Last modified:

30/10/2025

Description

In the Linux kernel, the following vulnerability has been resolved: remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() pru_rproc_set_ctable() accessed rproc->priv before the IS_ERR_OR_NULL check, which could lead to a null pointer dereference. Move the pru assignment, ensuring we never dereference a NULL rproc pointer.

Impact

References to Advisories, Solutions, and Tools

https://git.kernel.org/stable/c/66821fdb723d55b25482a76b92d17d416efeae6b
https://git.kernel.org/stable/c/c9b6d789591f2bd57b0cbd59592493e11e029ed4
https://git.kernel.org/stable/c/d41e075b077142bb9ae5df40b9ddf9fd7821a811
https://git.kernel.org/stable/c/f0164d89950120281f2446be9687cffa1e43dbcc