VDB
DEBIAN-CVE-2025-40112
DEBIAN-CVE-2025-40112
PUBLISHED
CVSS 8.699999809265137 HIGH
In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copy_{from_to}_user for Niagara The referenced commit introduced exception handlers on user-space memory references in copy_from_user and copy_to_user. These handlers return from the respective function and calculate the remaining bytes left to copy using the current register contents. This commit fixes a couple of bad calculations and a broken epilogue in the exception handlers. This will prevent crashes and ensure correct return values of copy_from_user and copy_to_user in the faulting case. The behaviour of memcpy stays unchanged.
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | linux | 6.11-1, 6.11.9-1, 6.11 |
| Debian:13 | linux | 0, 6.12.57-1, 6.12.48-1 |
| Debian:14 | linux | 6.13.10-1~exp1, 6.13.11-1~exp1, 6.13.3-1~exp1 |
| Debian:11 | linux-6.1 | 6.1.147-1~deb11u1, 6.1.148-1~deb11u1, * |
| Debian:12 | linux | *, 0, 6.1.106-1 |
Exploit Intelligence
- 4081.3.7.yml (github-poc)
Timeline
- Nov 12, 2025 CVE Published
- Apr 28, 2026 CVE Updated