Main Vulnerability Database SB20251112161

SB20251112161 - Input validation error in Linux kernel intel boards

Published: November 12, 2025

Security Bulletin ID SB20251112161

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Input validation error (CVE-ID: CVE-2025-40132)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the create_sdw_dailink() function in sound/soc/intel/boards/sof_sdw.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/87cab86925b7fa4c1c977bc191ac549a3b23f0ea
https://git.kernel.org/stable/c/a5416c0fc9e77b69f853dfb1e78bc05a7c06a789
https://git.kernel.org/stable/c/aea038062edfca9c6e5ddcecd4611d5a80113b4e