CVE-2025-40062

Published: Oct 28, 2025

Modified: May 23, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm - set NULL to qm->debug.qm_diff_regs When the initialization of qm->debug.acc_diff_reg fails, the probe process does not exit. However, after qm->debug.qm_diff_regs is freed, it is not set to NULL. This can lead to a double free when the remove process attempts to free it again. Therefore, qm->debug.qm_diff_regs should be set to NULL after it is freed.

Vendor	Product	Versions
Linux	Linux	affected `eda60520cfe3aba9f088c68ebd5bcbca9fc6ac3c - < a7836260d5121949ba734e840d42a86ab4a32fcc` affected `7fc8d9a525b5c3f8dfa5ed50901e764d8ede7e1e - < 1750f1ec143ebabdbdfa013668665c9d5042c430` affected `8be0913389718e8d27c4f1d4537b5e1b99ed7739 - < a87a21a56244b8f4eb357f6bad879247005bbe38` affected `8be0913389718e8d27c4f1d4537b5e1b99ed7739 - < 7226a0650ad5705bd8d39a11be270fa21ed1e6a5` affected `8be0913389718e8d27c4f1d4537b5e1b99ed7739 - < f0cafb02de883b3b413d34eb079c9680782a9cc1` +4 more versions
Linux	Linux	affected `6.10` unaffected `0 - < 6.10` unaffected `6.1.156 - <= 6.1.` unaffected `6.6.112 - <= 6.6.` unaffected `6.12.53 - <= 6.12.*` +2 more versions

References

https://git.kernel.org/stable/c/a7836260d5121949ba734e840d42a86ab4a32fcc

https://git.kernel.org/stable/c/1750f1ec143ebabdbdfa013668665c9d5042c430

https://git.kernel.org/stable/c/a87a21a56244b8f4eb357f6bad879247005bbe38

https://git.kernel.org/stable/c/7226a0650ad5705bd8d39a11be270fa21ed1e6a5

https://git.kernel.org/stable/c/f0cafb02de883b3b413d34eb079c9680782a9cc1

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-40062

Description

Affected Products

References