7.1

CVE-2025-38088

powerpc/powernv/memtrace: Fix out of bounds issue in memtrace mmap

In the Linux kernel, the following vulnerability has been resolved:

powerpc/powernv/memtrace: Fix out of bounds issue in memtrace mmap

memtrace mmap issue has an out of bounds issue. This patch fixes the by
checking that the requested mapping region size should stay within the
allocated region size.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.13 < 5.15.186
LinuxLinux Kernel Version >= 5.16 < 6.1.142
LinuxLinux Kernel Version >= 6.2 < 6.6.94
LinuxLinux Kernel Version >= 6.7 < 6.12.34
LinuxLinux Kernel Version >= 6.13 < 6.15.3
LinuxLinux Kernel Version6.16 Updaterc1
DebianDebian Linux Version11.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.14% 0.037
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.1 1.8 5.2
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

https://git.kernel.org/stable/c/81260c41b518b6f32c701425f1427562fa92f293
Patch
https://git.kernel.org/stable/c/620b77b23c41a6546e5548ffe2ea3ad71880dde4
Patch
https://git.kernel.org/stable/c/8635e325b85dfb9ddebdfaa6b5605d40d16cd147
Patch
https://git.kernel.org/stable/c/9c340b56d60545e4a159e41523dd8b23f81d3261
Patch
https://git.kernel.org/stable/c/bbd5a9ddb0f9750783a48a871c9e12c0b68c5f39
Patch
https://git.kernel.org/stable/c/cd097df4596f3a1e9d75eb8520162de1eb8485b2
Patch
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
Third Party Advisory