CVE-2025-38082

Опубликовано: 18 июн. 2025

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

In the Linux kernel, the following vulnerability has been resolved:

gpio: virtuser: fix potential out-of-bound write

If the caller wrote more characters, count is truncated to the max available space in "simple_write_to_buffer". Check that the input size does not exceed the buffer size. Write a zero termination afterwards.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 6.11 (включая) до 6.12.32 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 6.13 (включая) до 6.14.10 (исключая)

cpe:2.3:o:linux:linux_kernel:6.15:rc1:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.15:rc2:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.15:rc3:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.15:rc4:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.15:rc5:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.15:rc6:*:*:*:*:*:*

EPSS

Процентиль: 1%

0.00012

Низкий

7.8 High

CVSS3

Дефекты

CWE-787

Связанные уязвимости

CVE-2025-38082

CVSS3: 7.8

ubuntu

6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix potential out-of-bound write If the caller wrote more characters, count is truncated to the max available space in "simple_write_to_buffer". Check that the input size does not exceed the buffer size. Write a zero termination afterwards.

CVE-2025-38082

CVSS3: 5.5

redhat

6 месяцев назад

CVE-2025-38082

msrc

4 месяца назад

gpio: virtuser: fix potential out-of-bound write

CVE-2025-38082

CVSS3: 7.8

debian

6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: g ...

GHSA-jrjh-7r5x-wq56

CVSS3: 7.8

github

6 месяцев назад

EPSS

Процентиль: 1%

0.00012

Низкий

7.8 High

CVSS3

Дефекты

CWE-787