Linux Kernel Vulnerability in PCI Power Control Management
CVE-2025-40145

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
12 November 2025

What is CVE-2025-40145?

A flaw in the Linux kernel's PCI power control management can lead to improper resource handling due to a double cleanup when the 'devm_add_action_or_reset()' function fails. This issue arises when the designated cleanup function is inadvertently called multiple times, risking system instability and potential exploitation. The fix involves removing unnecessary cleanup instructions to ensure that resources are managed correctly upon failure, thereby improving overall system reliability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 75996c92f4de309f855471927e6489f5a354cfd4 < 77732c58fef6247b71493dc3997af0ec0aaad5c7

Linux 75996c92f4de309f855471927e6489f5a354cfd4

Linux 6.15

References

https://git.kernel.org/stable/c/77732c58fef6247b71493dc39...
https://git.kernel.org/stable/c/ab81f2f79c683c94bac622aaf...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.