CVE-2025-40174
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-11-12

Last updated on: 2025-11-12

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: x86/mm: Fix SMP ordering in switch_mm_irqs_off() Stephen noted that it is possible to not have an smp_mb() between the loaded_mm store and the tlb_gen load in switch_mm(), meaning the ordering against flush_tlb_mm_range() goes out the window, and it becomes possible for switch_mm() to not observe a recent tlb_gen update and fail to flush the TLBs. [ dhansen: merge conflict fixed by Ingo ]
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-11-12
Last Modified
2025-11-12
Generated
2026-06-16
AI Q&A
2025-11-13
EPSS Evaluated
2026-06-14
NVD
CVE-2025-40174
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability in the Linux kernel involves a missing memory barrier (smp_mb()) between certain operations in the switch_mm() function. Specifically, the lack of proper ordering between the loaded_mm store and the tlb_gen load can cause switch_mm() to miss a recent tlb_gen update, resulting in a failure to flush the Translation Lookaside Buffers (TLBs) correctly. This can lead to stale memory mappings being used.

Impact Analysis

The vulnerability can cause the system to use outdated memory mappings due to failure to flush TLBs properly. This can lead to unpredictable system behavior, potential data corruption, or security issues related to memory access consistency in multi-processor environments.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-40174. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart