Linux Kernel Vulnerability in ice Adapter from Intel
CVE-2025-40185

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 12 November 2025

What is CVE-2025-40185?

A resource management flaw exists in the Intel ice adapter within the Linux kernel. When the ice_adapter_new() function fails during the allocation of an adapter, the reserved XArray entry created by xa_insert() is not properly released. As a result, attempts to insert additional entries at the same index lead to an -EBUSY error, which can subsequently cause NULL pointer dereferences. To mitigate this issue, a reordering of operations is recommended: first check if the adapter exists, reserve the XArray slot, then allocate the adapter and finally store the adapter.

Affected Version(s)

Linux 0f0023c649c7bc50543fbe6e1801eb6357b8bd63 < 7b9269de9815fc34d93dab90bd5169bacbe78e70

Linux 0f0023c649c7bc50543fbe6e1801eb6357b8bd63 < 794abb265de3e792167fe3ea0440c064c722bb84

Linux 0f0023c649c7bc50543fbe6e1801eb6357b8bd63 < 2db687f3469dbc5c59bc53d55acafd75d530b497

References

https://git.kernel.org/stable/c/7b9269de9815fc34d93dab90b...

https://git.kernel.org/stable/c/794abb265de3e792167fe3ea0...

https://git.kernel.org/stable/c/2db687f3469dbc5c59bc53d55...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 12, 2025
Vulnerability Reserved
Apr 16, 2025

JSON