CVE-2025-40144
Published: November 14, 2025Last modified: November 14, 2025
Description
In the Linux kernel, the following vulnerability has been resolved: nvdimm: ndtest: Return -ENOMEM if devm_kcalloc() fails in ndtest_probe() devm_kcalloc() may fail. ndtest_probe() allocates three DMA address arrays (dcr_dma, label_dma, dimm_dma) and later unconditionally uses them in ndtest_nvdimm_init(), which can lead to a NULL pointer dereference under low-memory conditions. Check all three allocations and return -ENOMEM if any allocation fails, jumping to the common error path. Do not emit an extra error message since the allocator already warns on allocation failure.
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | linux-lts | Fixed (6.1.156-r0) |
| 25 LTS | linux-lts | Fixed (6.12.53-r0) | |
| Stream | linux-lts | Fixed (6.12.53-r0) |
References
- https://git.kernel.org/stable/c/8aea9d512c65eed0dad98b8d65ce74fe77c01b34
- https://git.kernel.org/stable/c/972cbba5cd384bacdc2eb589776e1d0a9f42714f
- https://git.kernel.org/stable/c/a9e6aa994917ee602798bbb03180a194b37865bb
- https://git.kernel.org/stable/c/b808a3590c2884ca91316dbadbfcc1924f5893c7
- https://git.kernel.org/stable/c/bc8b56317ff83ef4bba89bda356b93978604694f
- https://git.kernel.org/stable/c/e4a1e3e88160f7d7a2c33e3db8844073ed6eaf97