CVE-2025-37857

Опубликовано: 09 мая 2025

Источник: debian

Описание

In the Linux kernel, the following vulnerability has been resolved: scsi: st: Fix array overflow in st_setup() Change the array size to follow parms size instead of a fixed value.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	6.12.25-1		package
linux	fixed	6.1.135-1	bookworm	package

Примечания

https://git.kernel.org/linus/a018d1cf990d0c339fe0e29b762ea5dc10567d67 (6.15-rc1)

Связанные уязвимости

CVE-2025-37857

CVSS3: 5.5

ubuntu

8 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: scsi: st: Fix array overflow in st_setup() Change the array size to follow parms size instead of a fixed value.

CVE-2025-37857

CVSS3: 5.5

redhat

8 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: scsi: st: Fix array overflow in st_setup() Change the array size to follow parms size instead of a fixed value.

CVE-2025-37857

CVSS3: 5.5

nvd

8 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: scsi: st: Fix array overflow in st_setup() Change the array size to follow parms size instead of a fixed value.

CVE-2025-37857

CVSS3: 5.5

msrc

6 месяцев назад

scsi: st: Fix array overflow in st_setup()

GHSA-7g2m-f3gp-r995

CVSS3: 5.5

github

8 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: scsi: st: Fix array overflow in st_setup() Change the array size to follow parms size instead of a fixed value.