CVE-2025-37803

Summary

In the Linux kernel, the following vulnerability has been resolved:

udmabuf: fix a buf size overflow issue during udmabuf creation

by casting size_limit_mb to u64 when calculate pglimit.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxfbb0de795078190a9834b3409e4b009cfb18a6d4 < e84a08fc7e25cdad5d9a3def42cc770ff711193faffected
LinuxLinuxfbb0de795078190a9834b3409e4b009cfb18a6d4 < 13fe12c037b470321436deec393030c6153cfeb9affected
LinuxLinuxfbb0de795078190a9834b3409e4b009cfb18a6d4 < 373512760e13fdaa726faa9502d0f5be2abb3d33affected
LinuxLinuxfbb0de795078190a9834b3409e4b009cfb18a6d4 < 3f6c9d66e0f8eb9679b57913aa64b4d2266f6fbeaffected
LinuxLinuxfbb0de795078190a9834b3409e4b009cfb18a6d4 < b2ff4e9c599b000833d16a917f519aa2e4a75de2affected
LinuxLinuxfbb0de795078190a9834b3409e4b009cfb18a6d4 < 29b65a3171a49c9b69f31035146be966cec40b7aaffected
LinuxLinuxfbb0de795078190a9834b3409e4b009cfb18a6d4 < 2b8419c6ecf69007dcff54ea0b9f0b215282c55aaffected
LinuxLinuxfbb0de795078190a9834b3409e4b009cfb18a6d4 < 021ba7f1babd029e714d13a6bf2571b08af96d0faffected
LinuxLinux4.20affected
LinuxLinux0 < 4.20unaffected
LinuxLinux5.4.293 <= 5.4.*unaffected
LinuxLinux5.10.237 <= 5.10.*unaffected
LinuxLinux5.15.181 <= 5.15.*unaffected
LinuxLinux6.1.136 <= 6.1.*unaffected
LinuxLinux6.6.89 <= 6.6.*unaffected
LinuxLinux6.12.57 <= 6.12.*unaffected
LinuxLinux6.14.5 <= 6.14.*unaffected
LinuxLinux6.15 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References