CVE-2025-40081

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-40081
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40081.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-40081
Downstream
Related
Published
2025-10-28T11:48:45.392Z
Modified
2025-11-28T02:34:05.960958Z
Summary
perf: arm_spe: Prevent overflow in PERF_IDX2OFF()
Details

In the Linux kernel, the following vulnerability has been resolved:

perf: armspe: Prevent overflow in PERFIDX2OFF()

Cast nr_pages to unsigned long to avoid overflow when handling large AUX buffer sizes (>= 2 GiB).

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40081.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
d5d9696b03808bc6be723cc85288c912c3a05606
Fixed
656e9a5d69acdd1b20462f4a33378b90ddcb9626
Fixed
9c045d4501f7f70724a3bbb561f4f22d292bbfe6
Fixed
5d01f2b81568289443d22f1e13a363f829de6343
Fixed
7500384d3c9587593d75ded3b006835e7aa73ef8
Fixed
379cae2cb982f571cda9493ac573ab71125fd299
Fixed
1a19ba8e1f4ff24ece8ca69b79df8442c431db90
Fixed
e516cfd19b0f4c774a57b17fb43a7f41991f0735
Fixed
a29fea30dd93da16652930162b177941abd8c75e

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
4.15.0
Fixed
5.4.301
Type
ECOSYSTEM
Events
Introduced
5.5.0
Fixed
5.10.246
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.195
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.156
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.112
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.53
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.17.3