-

CVE-2025-39788

EPSS 0.03%
Veröffentlicht 11.09.2025 16:56:37
Zuletzt bearbeitet 15.09.2025 15:22:38
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

scsi: ufs: exynos: Fix programming of HCI_UTRL_NEXUS_TYPE

On Google gs101, the number of UTP transfer request slots (nutrs) is 32,
and in this case the driver ends up programming the UTRL_NEXUS_TYPE
incorrectly as 0.

This is because the left hand side of the shift is 1, which is of type
int, i.e. 31 bits wide. Shifting by more than that width results in
undefined behaviour.

Fix this by switching to the BIT() macro, which applies correct type
casting as required. This ensures the correct value is written to
UTRL_NEXUS_TYPE (0xffffffff on gs101), and it also fixes a UBSAN shift
warning:

    UBSAN: shift-out-of-bounds in drivers/ufs/host/ufs-exynos.c:1113:21
    shift exponent 32 is too large for 32-bit type 'int'

For consistency, apply the same change to the nutmrs / UTMRL_NEXUS_TYPE
write.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 10

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 01510a9e8222f11cce064410f3c2fcf0756c0a08

Version 55f4b1f73631a0817717fe6e98517de51b4c3527

Status affected

Version < 098b2c8ee208c77126839047b9e6e1925bb35baa

Version 55f4b1f73631a0817717fe6e98517de51b4c3527

Status affected

Version < c1f025da8f370a015e412b55cbcc583f91de8316

Version 55f4b1f73631a0817717fe6e98517de51b4c3527

Status affected

Version < 6d53b2a134da77eb7fe65c5c7c7a3c193539a78a

Version 55f4b1f73631a0817717fe6e98517de51b4c3527

Status affected

Version < dc8fb963742f1a38d284946638f9358bdaa0ddee

Version 55f4b1f73631a0817717fe6e98517de51b4c3527

Status affected

Version < 5b9f1ef293428ea9c0871d96fcec2a87c4445832

Version 55f4b1f73631a0817717fe6e98517de51b4c3527

Status affected

Version < 01aad16c2257ab8ff33b152b972c9f2e1af47912

Version 55f4b1f73631a0817717fe6e98517de51b4c3527

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.9

Status affected

Version < 5.9

Version 0

Status unaffected

Version <= 5.10.*

Version 5.10.241

Status unaffected

Version <= 5.15.*

Version 5.15.190

Status unaffected

Version <= 6.1.*

Version 6.1.149

Status unaffected

Version <= 6.6.*

Version 6.6.103

Status unaffected

Version <= 6.12.*

Version 6.12.44

Status unaffected

Version <= 6.16.*

Version 6.16.4

Status unaffected

Version <= *

Version 6.17-rc1

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.077

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/01510a9e8222f11cce064410f3c2fcf0756c0a08

https://git.kernel.org/stable/c/098b2c8ee208c77126839047b9e6e1925bb35baa

https://git.kernel.org/stable/c/c1f025da8f370a015e412b55cbcc583f91de8316

https://git.kernel.org/stable/c/6d53b2a134da77eb7fe65c5c7c7a3c193539a78a

https://git.kernel.org/stable/c/dc8fb963742f1a38d284946638f9358bdaa0ddee

https://git.kernel.org/stable/c/5b9f1ef293428ea9c0871d96fcec2a87c4445832

https://git.kernel.org/stable/c/01aad16c2257ab8ff33b152b972c9f2e1af47912

https://nvd.nist.gov/vuln/detail/CVE-2025-39788

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-39788

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-39788

EUVD