CVE-2025-38182
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
ublk: santizize the arguments from userspace when adding a device
Sanity check the values for queue depth and number of queues we get from userspace when adding a device.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 71f28f3136aff5890cd56de78abc673f8393cad9 < 3162d8235c8c4d585525cee8a59d1c180940a968 | affected |
| Linux | Linux | 71f28f3136aff5890cd56de78abc673f8393cad9 < 0f8df5d6f25ac17c52a8bc6418e60a3e63130550 | affected |
| Linux | Linux | 71f28f3136aff5890cd56de78abc673f8393cad9 < e2b2b7cf6368580114851cb3932f2ad9fbf23386 | affected |
| Linux | Linux | 71f28f3136aff5890cd56de78abc673f8393cad9 < 8c8472855884355caf3d8e0c50adf825f83454b2 | affected |
| Linux | Linux | 6.0 | affected |
| Linux | Linux | 0 < 6.0 | unaffected |
| Linux | Linux | 6.6.95 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.35 <= 6.12.* | unaffected |
| Linux | Linux | 6.15.4 <= 6.15.* | unaffected |
| Linux | Linux | 6.16 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/3162d8235c8c4d585525cee8a59d1c180940a968
- https://git.kernel.org/stable/c/0f8df5d6f25ac17c52a8bc6418e60a3e63130550
- https://git.kernel.org/stable/c/e2b2b7cf6368580114851cb3932f2ad9fbf23386
- https://git.kernel.org/stable/c/8c8472855884355caf3d8e0c50adf825f83454b2
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.