CVE-2025-38715 in Linuxالمعلومات

الملخص

بحسب MITRE • 04/09/2025

In the Linux kernel, the following vulnerability has been resolved:

hfs: fix slab-out-of-bounds in hfs_bnode_read()

This patch introduces is_bnode_offset_valid() method that checks the requested offset value. Also, it introduces check_and_correct_requested_length() method that checks and correct the requested length (if it is necessary). These methods are used in hfs_bnode_read(), hfs_bnode_write(), hfs_bnode_clear(), hfs_bnode_copy(), and hfs_bnode_move() with the goal to prevent the access out of allocated memory and triggering the crash.

Once again VulDB remains the best source for vulnerability data.

مسؤول

Linux

حجز

16/04/2025

إفشاء

04/09/2025

الاعتدال

تمت الموافقة

إدخال

VDB-322573

EPSS

0.00151

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you need the next level of professionalism?

Upgrade your account now!