CVE-2025-68352

EPSS 0.03%
Veröffentlicht 24.12.2025 10:32:43
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

spi: ch341: fix out-of-bounds memory access in ch341_transfer_one

In the Linux kernel, the following vulnerability has been resolved:

spi: ch341: fix out-of-bounds memory access in ch341_transfer_one

Discovered by Atuin - Automated Vulnerability Discovery Engine.

The 'len' variable is calculated as 'min(32, trans->len + 1)',
which includes the 1-byte command header.

When copying data from 'trans->tx_buf' to 'ch341->tx_buf + 1', using 'len'
as the length is incorrect because:

1. It causes an out-of-bounds read from 'trans->tx_buf' (which has size
   'trans->len', i.e., 'len - 1' in this context).
2. It can cause an out-of-bounds write to 'ch341->tx_buf' if 'len' is
   CH341_PACKET_LENGTH (32). Writing 32 bytes to ch341->tx_buf + 1
   overflows the buffer.

Fix this by copying 'len - 1' bytes.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 7

CNA 2 VulnDex Vulnerability Enrichment 5

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 8846739f52afa07e63395c80227dc544f54bd7b1

Version < cad6c0fd6f3c0e76a1f75df4bce3b08a13f08974

Status affected

Version 8846739f52afa07e63395c80227dc544f54bd7b1

Version < ea1e43966cd03098fcd5f0d72e6c2901d45fa08d

Status affected

Version 8846739f52afa07e63395c80227dc544f54bd7b1

Version < 81841da1f30f66a850cc8796d99ba330aad9d696

Status affected

Version 8846739f52afa07e63395c80227dc544f54bd7b1

Version < 545d1287e40a55242f6ab68bcc1ba3b74088b1bc

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.11

Status affected

Version 0

Version < 6.11

Status unaffected

Version <= 6.12.*

Version 6.12.63

Status unaffected

Version <= 6.17.*

Version 6.17.13

Status unaffected

Version <= 6.18.*

Version 6.18.2

Status unaffected

Version <= *

Version 6.19

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.099

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/cad6c0fd6f3c0e76a1f75df4bce3b08a13f08974

https://git.kernel.org/stable/c/ea1e43966cd03098fcd5f0d72e6c2901d45fa08d

https://git.kernel.org/stable/c/81841da1f30f66a850cc8796d99ba330aad9d696

https://git.kernel.org/stable/c/545d1287e40a55242f6ab68bcc1ba3b74088b1bc

https://nvd.nist.gov/vuln/detail/CVE-2025-68352

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-68352

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-68352

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-68352