CVE-2025-40191

Vulnerability Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix kfd process ref leaking when userptr unmapping kfd_lookup_process_by_pid hold the kfd process reference to ensure it doesn't get destroyed while sending the segfault event to user space. Calling kfd_lookup_process_by_pid as function parameter leaks the kfd process refcount and miss the NULL pointer check if app process is already destroyed.

References

• https://git.kernel.org/stable/c/58e6fc2fb94f0f409447e5d46cf6a417b6397fbc
• https://git.kernel.org/stable/c/60f6112fc9b3ba0eae519f10702c0c13bab45742

FAQ

What is CVE-2025-40191?

CVE-2025-40191 is a documented vulnerability. In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix kfd process ref leaking when userptr unmapping kfd_lookup_process_by_pid hold the kfd process reference to ensure ...

How severe is CVE-2025-40191?

CVSS scoring is not yet available for CVE-2025-40191. Check NVD for updates.

Is there a patch for CVE-2025-40191?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.