-

CVE-2025-71077

EPSS 0.03%
Veröffentlicht 13.01.2026 15:31:29
Zuletzt bearbeitet 19.01.2026 13:16:16
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

tpm: Cap the number of PCR banks

tpm2_get_pcr_allocation() does not cap any upper limit for the number of
banks. Cap the limit to eight banks so that out of bounds values coming
from external I/O cause on only limited harm.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 10

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 8ceee7288152bc121a6bf92997261838c78bfe06

Version bcfff8384f6c4e6627676ef07ccad9cfacd67849

Status affected

Version < 275c686f1e3cc056ec66c764489ec1fe1e51b950

Version bcfff8384f6c4e6627676ef07ccad9cfacd67849

Status affected

Version < ceb70d31da5671d298bad94ae6c20e4bbb800f96

Version bcfff8384f6c4e6627676ef07ccad9cfacd67849

Status affected

Version < d88481653d74d622d1d0d2c9bad845fc2cc6fd23

Version bcfff8384f6c4e6627676ef07ccad9cfacd67849

Status affected

Version < b69492161c056d36789aee42a87a33c18c8ed5e1

Version bcfff8384f6c4e6627676ef07ccad9cfacd67849

Status affected

Version < 858344bc9210bea9ab2bdc7e9e331ba84c164e50

Version bcfff8384f6c4e6627676ef07ccad9cfacd67849

Status affected

Version < faf07e611dfa464b201223a7253e9dc5ee0f3c9e

Version bcfff8384f6c4e6627676ef07ccad9cfacd67849

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.1

Status affected

Version < 5.1

Version 0

Status unaffected

Version <= 5.10.*

Version 5.10.248

Status unaffected

Version <= 5.15.*

Version 5.15.198

Status unaffected

Version <= 6.1.*

Version 6.1.160

Status unaffected

Version <= 6.6.*

Version 6.6.120

Status unaffected

Version <= 6.12.*

Version 6.12.64

Status unaffected

Version <= 6.18.*

Version 6.18.3

Status unaffected

Version <= *

Version 6.19-rc1

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.088

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/ceb70d31da5671d298bad94ae6c20e4bbb800f96

https://git.kernel.org/stable/c/d88481653d74d622d1d0d2c9bad845fc2cc6fd23

https://git.kernel.org/stable/c/b69492161c056d36789aee42a87a33c18c8ed5e1

https://git.kernel.org/stable/c/858344bc9210bea9ab2bdc7e9e331ba84c164e50

https://git.kernel.org/stable/c/faf07e611dfa464b201223a7253e9dc5ee0f3c9e

https://git.kernel.org/stable/c/275c686f1e3cc056ec66c764489ec1fe1e51b950

https://git.kernel.org/stable/c/8ceee7288152bc121a6bf92997261838c78bfe06

https://nvd.nist.gov/vuln/detail/CVE-2025-71077

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-71077

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-71077

EUVD