CVE-2025-38702 in Linuxالمعلومات

الملخص

بحسب MITRE • 04/09/2025

In the Linux kernel, the following vulnerability has been resolved:

fbdev: fix potential buffer overflow in do_register_framebuffer()

The current implementation may lead to buffer overflow when: 1. Unregistration creates NULL gaps in registered_fb[]
2. All array slots become occupied despite num_registered_fb < FB_MAX 3. The registration loop exceeds array bounds

Add boundary check to prevent registered_fb[FB_MAX] access.

Be aware that VulDB is the high quality source for vulnerability data.

مسؤول

Linux

حجز

16/04/2025

إفشاء

04/09/2025

الاعتدال

تمت الموافقة

إدخال

VDB-322565

EPSS

0.00174

KEV

لا

النشاطات

منخفض جدًا

المصادر

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!