AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2025-40311: In the Linux kernel, the following vulnerability has been resolved: accel/habanalabs: support mapping cb with vmalloc-b

infovulnerability

security

Source: NVD/CVE DatabaseDecember 7, 2025CVE-2025-40311

Summary

A bug in the Linux kernel's Habana Labs accelerator driver could cause a kernel crash when trying to map certain types of memory (specifically, memory allocated by dma_alloc_coherent, which is memory designed for direct hardware access) if IOMMU (input/output memory management unit, which controls how devices access system memory) is enabled. The kernel would crash because it tried to map vmalloc-backed memory (memory allocated from the virtual memory system) without the proper flags set.

Solution / Mitigation

The fix checks whether the memory address comes from the vmalloc range, and if so, sets the VM_MIXEDMAP flag in the VMA (virtual memory area, a region of a process's memory) before mapping it. This allows the memory to be safely mapped without triggering a kernel crash.

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 0.0%

Classification

Attack SophisticationModerate

Original source: https://nvd.nist.gov/vuln/detail/CVE-2025-40311

First tracked: February 15, 2026 at 08:52 PM

Classified by LLM (prompt v3) · confidence: 95%