Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: misc: pci_endpoint_test: Fix array underflow in pci_endpoint_test_ioctl() Commit eefb83790a0d ("misc: pci_endpoint_test: Add doorbell test case") added NO_BAR (-1) to the pci_barno enum which, in practical terms, changes the enum from an unsigned int to a signed int. If the user passes a negative number in pci_endpoint_test_ioctl() then it results in an array underflow in pci_endpoint_test_bar().
References
- https://git.kernel.org/stable/c/1ad82f9db13d85667366044acdfb02009d576c5a
- https://git.kernel.org/stable/c/6df3687922570f753574c40b35e83b26b32292d0
FAQ
What is CVE-2025-40117?
CVE-2025-40117 is a documented vulnerability. In the Linux kernel, the following vulnerability has been resolved: misc: pci_endpoint_test: Fix array underflow in pci_endpoint_test_ioctl() Commit eefb83790a0d ("misc: pci_endpoint_test: Add doorb...
How severe is CVE-2025-40117?
CVSS scoring is not yet available for CVE-2025-40117. Check NVD for updates.
Is there a patch for CVE-2025-40117?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.