CVE-2025-40211
ACPI: video: Fix use-after-free in acpi_video_switch_brightness()
Description
In the Linux kernel, the following vulnerability has been resolved: ACPI: video: Fix use-after-free in acpi_video_switch_brightness() The switch_brightness_work delayed work accesses device->brightness and device->backlight, freed by acpi_video_dev_unregister_backlight() during device removal. If the work executes after acpi_video_bus_unregister_backlight() frees these resources, it causes a use-after-free when acpi_video_switch_brightness() dereferences device->brightness or device->backlight. Fix this by calling cancel_delayed_work_sync() for each device's switch_brightness_work in acpi_video_bus_remove_notify_handler() after removing the notify handler that queues the work. This ensures the work completes before the memory is freed. [ rjw: Changelog edit ]
INFO
Published Date :
Nov. 21, 2025, 10:21 a.m.
Last Modified :
Nov. 21, 2025, 10:21 a.m.
Remotely Exploit :
No
Source :
Linux
Affected Products
The following products are affected by CVE-2025-40211
vulnerability.
Even if cvefeed.io is aware of the exact versions of the
products
that
are
affected, the information is not represented in the table below.
No affected product recoded yet
Solution
- Cancel delayed work synchronously before freeing memory.
- Ensure work completes before resources are freed.
- Update the Linux kernel to the latest version.
- Apply relevant security patches.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2025-40211 vulnerability anywhere in the article.