In the Linux kernel, the following vulnerability has been resolved: Input: imx_sc_key - fix...

CVE-2025-40262 → View on GitHub ↗ View on CVE.org ↗ View on NVD ↗

Description

In the Linux kernel, the following vulnerability has been resolved:

Input: imx_sc_key - fix memory corruption on unload

This is supposed to be "priv" but we accidentally pass "&priv" which is
an address in the stack and so it will lead to memory corruption when
the imx_sc_key_action() function is called. Remove the &.

Basic information

Type: unreviewed
Severity: unknown
Advisory on GitHub: Open advisory ↗
Repository advisory: —
Source code: Not specified
Published (advisory): 2025-12-04 18:30:53 UTC
Updated: 2026-06-02 15:31:51 UTC
NVD published: 2025-12-04

EPSS Score

Score	Percentile
0.06%	18.12%

CVSS Scores

No CVSS scores in this advisory.

Identifiers

Type	Value
GHSA	GHSA-2m33-w232-qf59 ↗
CVE	CVE-2025-40262 ↗

References

https://nvd.nist.gov/vuln/detail/CVE-2025-40262
https://git.kernel.org/stable/c/56881294915a6e866d31a46f9bcb5e19167cfbaa
https://git.kernel.org/stable/c/6524a15d33951b18ac408ebbcb9c16e14e21c336
https://git.kernel.org/stable/c/ca9a08de9b294422376f47ade323d69590dbc6f2
https://git.kernel.org/stable/c/d83f1512758f4ef6fc5e83219fe7eeeb6b428ea4
https://git.kernel.org/stable/c/3e96803b169dc948847f0fc2bae729a80914eb7b
https://git.kernel.org/stable/c/4ce5218b101205b3425099fe3df88a61b58f9cc2
https://git.kernel.org/stable/c/a155292c3ce722036014da5477ee0e4c87b5e6b3
https://cert-portal.siemens.com/productcert/html/ssa-253495.html
https://github.com/advisories/GHSA-2m33-w232-qf59

cvelogic Threat Intelligence