CVE-2025-40191
- Source
- https://cve.org/CVERecord?id=CVE-2025-40191
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40191.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-40191
- Downstream
- Published
- 2025-11-12T21:56:31.206Z
- Modified
- 2026-05-15T04:13:47.224406925Z
- Summary
- drm/amdkfd: Fix kfd process ref leaking when userptr unmapping
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
drm/amdkfd: Fix kfd process ref leaking when userptr unmapping
kfdlookupprocessbypid hold the kfd process reference to ensure it doesn't get destroyed while sending the segfault event to user space.
Calling kfdlookupprocessbypid as function parameter leaks the kfd process refcount and miss the NULL pointer check if app process is already destroyed.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40191.json" }- References
-
- https://git.kernel.org/stable/c/58e6fc2fb94f0f409447e5d46cf6a417b6397fbc
- https://git.kernel.org/stable/c/60f6112fc9b3ba0eae519f10702c0c13bab45742
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40191.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-40191
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git