CVE-2025-40330

Published: Dec 9, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Shutdown FW DMA in bnxt_shutdown() The netif_close() call in bnxt_shutdown() only stops packet DMA. There may be FW DMA for trace logging (recently added) that will continue. If we kexec to a new kernel, the DMA will corrupt memory in the new kernel. Add bnxt_hwrm_func_drv_unrgtr() to unregister the driver from the FW. This will stop the FW DMA. In case the call fails, call pcie_flr() to reset the function and stop the DMA.

Vendor	Product	Versions
Linux	Linux	affected `24d694aec139e9e0a31c60993db79bd8ad575afe - < 1a8a15c3f71d1199d510ccba4bc201cbd2204048` affected `24d694aec139e9e0a31c60993db79bd8ad575afe - < bc7208ca805ae6062f353a4753467d913d963bc6`
Linux	Linux	affected `6.13` unaffected `0 - < 6.13` unaffected `6.17.8 - <= 6.17.` unaffected `6.18 - <= `

References

https://git.kernel.org/stable/c/1a8a15c3f71d1199d510ccba4bc201cbd2204048

https://git.kernel.org/stable/c/bc7208ca805ae6062f353a4753467d913d963bc6

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-40330

Description

Affected Products

References