CVE-2025-39888

Опубликовано: 23 сент. 2025

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

In the Linux kernel, the following vulnerability has been resolved:

fuse: Block access to folio overlimit

syz reported a slab-out-of-bounds Write in fuse_dev_do_write.

When the number of bytes to be retrieved is truncated to the upper limit by fc->max_pages and there is an offset, the oob is triggered.

Add a loop termination condition to prevent overruns.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 6.16 (включая) до 6.16.8 (исключая)

cpe:2.3:o:linux:linux_kernel:6.17:rc1:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.17:rc2:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.17:rc3:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.17:rc4:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.17:rc5:*:*:*:*:*:*

EPSS

Процентиль: 7%

0.00027

Низкий

7.8 High

CVSS3

Дефекты

CWE-787

Связанные уязвимости

CVE-2025-39888

CVSS3: 7.8

ubuntu

3 месяца назад

In the Linux kernel, the following vulnerability has been resolved: fuse: Block access to folio overlimit syz reported a slab-out-of-bounds Write in fuse_dev_do_write. When the number of bytes to be retrieved is truncated to the upper limit by fc->max_pages and there is an offset, the oob is triggered. Add a loop termination condition to prevent overruns.

CVE-2025-39888

CVSS3: 7

redhat

3 месяца назад

No description is available for this CVE.

CVE-2025-39888

CVSS3: 7.8

debian

3 месяца назад

In the Linux kernel, the following vulnerability has been resolved: f ...

GHSA-jgjw-jx49-6q8j

CVSS3: 7.8

github

3 месяца назад

BDU:2025-13900

CVSS3: 7

fstec

4 месяца назад

Уязвимость функции fuse_retrieve() модуля fs/fuse/dev.c ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 7%

0.00027

Низкий

7.8 High

CVSS3

Дефекты

CWE-787