-

CVE-2025-38688

EPSS 0.03%
Veröffentlicht 04.09.2025 15:32:42
Zuletzt bearbeitet 05.09.2025 17:47:24
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

iommufd: Prevent ALIGN() overflow

When allocating IOVA the candidate range gets aligned to the target
alignment. If the range is close to ULONG_MAX then the ALIGN() can
wrap resulting in a corrupted iova.

Open code the ALIGN() using get_add_overflow() to prevent this.
This simplifies the checks as we don't need to check for length earlier
either.

Consolidate the two copies of this code under a single helper.

This bug would allow userspace to create a mapping that overlaps with some
other mapping or a reserved range.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 8

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < d19b817540c0abe84854a64ee9ee34cecc3bbeef

Version 51fe6141f0f64ae0bbc096a41a07572273e8c0ef

Status affected

Version < ebb6021560b94649bec6b8faba6fe0dca2218e81

Version 51fe6141f0f64ae0bbc096a41a07572273e8c0ef

Status affected

Version < e42a046bb41dcdde4f766a17d8211842007ed537

Version 51fe6141f0f64ae0bbc096a41a07572273e8c0ef

Status affected

Version < 79fad1917802c28de51a479318a056a6fbe3e2f2

Version 51fe6141f0f64ae0bbc096a41a07572273e8c0ef

Status affected

Version < b42497e3c0e74db061eafad41c0cd7243c46436b

Version 51fe6141f0f64ae0bbc096a41a07572273e8c0ef

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.2

Status affected

Version < 6.2

Version 0

Status unaffected

Version <= 6.6.*

Version 6.6.103

Status unaffected

Version <= 6.12.*

Version 6.12.43

Status unaffected

Version <= 6.15.*

Version 6.15.11

Status unaffected

Version <= 6.16.*

Version 6.16.2

Status unaffected

Version <= *

Version 6.17-rc1

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.057

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/d19b817540c0abe84854a64ee9ee34cecc3bbeef

https://git.kernel.org/stable/c/ebb6021560b94649bec6b8faba6fe0dca2218e81

https://git.kernel.org/stable/c/e42a046bb41dcdde4f766a17d8211842007ed537

https://git.kernel.org/stable/c/79fad1917802c28de51a479318a056a6fbe3e2f2

https://git.kernel.org/stable/c/b42497e3c0e74db061eafad41c0cd7243c46436b

https://nvd.nist.gov/vuln/detail/CVE-2025-38688

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38688

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38688

EUVD