Kernel Memory Mapping Vulnerability in Linux by Habanalabs
CVE-2025-40311

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 8 December 2025

What is CVE-2025-40311?

A vulnerability in the Linux kernel affects the memory management of coherent memory when using Habanalabs' acceleration components. The issue arises when IOMMU is enabled, leading to improper address handling from the vmalloc range. If not addressed correctly, this can result in kernel crashes due to an incorrect mapping without the VM_MIXEDMAP flag. The resolution involves ensuring that when vmalloc addresses are utilized, the corresponding VMA is properly set up to prevent any inconsistencies, thus enhancing overall kernel stability.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 7ec8ac9f73d4a9438c2186768d6de27ace37531e

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 73c7c2cdb442fc4160d2a2a4bfffbd162af06cb9

References

https://git.kernel.org/stable/c/7ec8ac9f73d4a9438c2186768...

https://git.kernel.org/stable/c/d1dfe21a332d38a6a09658ec2...

https://git.kernel.org/stable/c/73c7c2cdb442fc4160d2a2a4b...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 8, 2025
Vulnerability Reserved
Apr 16, 2025

JSON