Описание
No description is available for this CVE.
Отчет
This vulnerability exists in the driver for certain hardware which supports the I2C protocol. This hardware is often used to interface with low-speed peripherals such as human interface devices. By exploiting a flaw in how the hardware handles certain messages, an attacker could craft malicious messages to cause a system crash or to modify or expose sensitive memory locations. This vulnerability has a security impact of Important because of its impact on system Confidentiality, Integrity, and Availability, and the fact that only local privileges are required (PR:L). This vulnerability exists in Red Hat Enterprise Linux 8 and later in the i2c-designware-core module.
Меры по смягчению последствий
To mitigate this issue, prevent the i2c-designware-core module from being loaded. Please see https://access.redhat.com/solutions/41278 for details on how to prevent a kernel module from loading automatically.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | kernel | Not affected | ||
| Red Hat Enterprise Linux 7 | kernel | Not affected | ||
| Red Hat Enterprise Linux 7 | kernel-rt | Not affected | ||
| Red Hat Enterprise Linux 8 | kernel-rt | Affected | ||
| Red Hat Enterprise Linux 9 | kernel-rt | Affected | ||
| Red Hat Enterprise Linux 10 | kernel | Fixed | RHSA-2025:14009 | 18.08.2025 |
| Red Hat Enterprise Linux 8 | kernel | Fixed | RHSA-2025:13960 | 18.08.2025 |
| Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support | kernel | Fixed | RHSA-2025:13776 | 13.08.2025 |
| Red Hat Enterprise Linux 8.6 Telecommunications Update Service | kernel | Fixed | RHSA-2025:13776 | 13.08.2025 |
| Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions | kernel | Fixed | RHSA-2025:13776 | 13.08.2025 |
Показывать по
Дополнительная информация
Статус:
7 High
CVSS3
Связанные уязвимости
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
In the Linux kernel, the following vulnerability has been resolved: i2c/designware: Fix an initialization issue The i2c_dw_xfer_init() function requires msgs and msg_write_idx from the dev context to be initialized. amd_i2c_dw_xfer_quirk() inits msgs and msgs_num, but not msg_write_idx. This could allow an out of bounds access (of msgs). Initialize msg_write_idx before calling i2c_dw_xfer_init().
Уязвимость функции i2c_dw_xfer_init() модуля drivers/i2c/busses/i2c-designware-master.c ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании
7 High
CVSS3