CVE-2025-39967

EPSS 0.03%
Veröffentlicht 15.10.2025 07:55:51
Zuletzt bearbeitet 03.02.2026 14:12:31
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

fbcon: fix integer overflow in fbcon_do_set_font

Fix integer overflow vulnerabilities in fbcon_do_set_font() where font
size calculations could overflow when handling user-controlled font
parameters.

The vulnerabilities occur when:
1. CALC_FONTSZ(h, pitch, charcount) performs h * pith * charcount
   multiplication with user-controlled values that can overflow.
2. FONT_EXTRA_WORDS * sizeof(int) + size addition can also overflow
3. This results in smaller allocations than expected, leading to buffer
   overflows during font data copying.

Add explicit overflow checking using check_mul_overflow() and
check_add_overflow() kernel helpers to safety validate all size
calculations before allocation.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 4.4.235 < 4.5

Linux ≫ Linux Kernel Version >= 4.9.235 < 4.10

Linux ≫ Linux Kernel Version >= 4.14.196 < 4.15

Linux ≫ Linux Kernel Version >= 4.19.143 < 4.20

Linux ≫ Linux Kernel Version >= 5.4.62 < 5.4.300

Linux ≫ Linux Kernel Version >= 5.8.6 < 5.9

Linux ≫ Linux Kernel Version >= 5.9.1 < 5.10.245

Linux ≫ Linux Kernel Version >= 5.11 < 5.15.194

Linux ≫ Linux Kernel Version >= 5.16 < 6.1.155

Linux ≫ Linux Kernel Version >= 6.2 < 6.6.109

Linux ≫ Linux Kernel Version >= 6.7 < 6.12.50

Linux ≫ Linux Kernel Version >= 6.13 < 6.16.10

Linux ≫ Linux Kernel Version5.9 Update-

Linux ≫ Linux Kernel Version5.9 Updaterc3

Linux ≫ Linux Kernel Version5.9 Updaterc4

Linux ≫ Linux Kernel Version5.9 Updaterc5

Linux ≫ Linux Kernel Version5.9 Updaterc6

Linux ≫ Linux Kernel Version5.9 Updaterc7

Linux ≫ Linux Kernel Version5.9 Updaterc8

Linux ≫ Linux Kernel Version6.17 Updaterc1

Linux ≫ Linux Kernel Version6.17 Updaterc2

Linux ≫ Linux Kernel Version6.17 Updaterc3

Linux ≫ Linux Kernel Version6.17 Updaterc4

Linux ≫ Linux Kernel Version6.17 Updaterc5

Linux ≫ Linux Kernel Version6.17 Updaterc6

Linux ≫ Linux Kernel Version6.17 Updaterc7

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.085

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-190 Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

https://git.kernel.org/stable/c/994bdc2d23c79087fbf7dcd9544454e8ebcef877

Patch

https://git.kernel.org/stable/c/9c8ec14075c5317edd6b242f1be8167aa1e4e333

Patch

https://git.kernel.org/stable/c/b8a6e85328aeb9881531dbe89bcd2637a06c3c95

Patch

https://git.kernel.org/stable/c/a6eb9f423b3db000aaedf83367b8539f6b72dcfc

Patch

https://git.kernel.org/stable/c/adac90bb1aaf45ca66f9db8ac100be16750ace78

Patch

https://git.kernel.org/stable/c/4a4bac869560f943edbe3c2b032062f6673b13d3

Patch