Unrated severityNVD Advisory· Published Sep 16, 2025· Updated Jan 14, 2026

efi: stmm: Fix incorrect buffer allocation method

CVE-2025-39836

Description

In the Linux kernel, the following vulnerability has been resolved:

The communication buffer allocated by setup_mm_hdr() is later on passed to tee_shm_register_kernel_buf(). The latter expects those buffers to be contiguous pages, but setup_mm_hdr() just uses kmalloc(). That can cause various corruptions or BUGs, specifically since commit 9aec2fb0fd5e ("slab: allocate frozen pages"), though it was broken before as well.

Fix this by using alloc_pages_exact() instead of kmalloc().

Affected products

Linux/Linux Kernel Rtllm-fuzzy
Linux/Linuxv5
Range: 6.8

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

git.kernel.org/stable/c/630c0e6064daf84f17aad1a7d9ca76b562e3fe47mitre
git.kernel.org/stable/c/77ff27ff0e4529a003c8a1c2492c111968c378d3mitre
git.kernel.org/stable/c/c5e81e672699e0c5557b2b755cc8f7a69aa92bffmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000