CVE-2025-38286
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
pinctrl: at91: Fix possible out-of-boundary access
at91_gpio_probe() doesn't check that given OF alias is not available or something went wrong when trying to get it. This might have consequences when accessing gpio_chips array with that value as an index. Note, that BUG() can be compiled out and hence won't actually perform the required checks.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 6732ae5cb47c4f9a72727585956f2a5e069d1637 < 264a5cf0c422e65c94447a1ebebfac7c92690670 | affected |
| Linux | Linux | 6732ae5cb47c4f9a72727585956f2a5e069d1637 < db5665cbfd766db7d8cd0e5fd6e3c0b412916774 | affected |
| Linux | Linux | 6732ae5cb47c4f9a72727585956f2a5e069d1637 < 2ecafe59668d2506a68459a9d169ebe41a147a41 | affected |
| Linux | Linux | 6732ae5cb47c4f9a72727585956f2a5e069d1637 < f1c1fdc41fbf7e308ced9c86f3f66345a3f6f478 | affected |
| Linux | Linux | 6732ae5cb47c4f9a72727585956f2a5e069d1637 < eb435bc4c74acbb286cec773deac13d117d3ef39 | affected |
| Linux | Linux | 6732ae5cb47c4f9a72727585956f2a5e069d1637 < e02e12d6a7ab76c83849a4122785650dc7edef65 | affected |
| Linux | Linux | 6732ae5cb47c4f9a72727585956f2a5e069d1637 < 288c39286f759314ee8fb3a80a858179b4f306da | affected |
| Linux | Linux | 6732ae5cb47c4f9a72727585956f2a5e069d1637 < 762ef7d1e6eefad9896560bfcb9bcf7f1b6df9c1 | affected |
| Linux | Linux | 3.8 | affected |
| Linux | Linux | 0 < 3.8 | unaffected |
| Linux | Linux | 5.4.295 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.239 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.186 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.142 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.94 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.34 <= 6.12.* | unaffected |
| Linux | Linux | 6.15.3 <= 6.15.* | unaffected |
| Linux | Linux | 6.16 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
References
- https://git.kernel.org/stable/c/264a5cf0c422e65c94447a1ebebfac7c92690670
- https://git.kernel.org/stable/c/db5665cbfd766db7d8cd0e5fd6e3c0b412916774
- https://git.kernel.org/stable/c/2ecafe59668d2506a68459a9d169ebe41a147a41
- https://git.kernel.org/stable/c/f1c1fdc41fbf7e308ced9c86f3f66345a3f6f478
- https://git.kernel.org/stable/c/eb435bc4c74acbb286cec773deac13d117d3ef39
- https://git.kernel.org/stable/c/e02e12d6a7ab76c83849a4122785650dc7edef65
- https://git.kernel.org/stable/c/288c39286f759314ee8fb3a80a858179b4f306da
- https://git.kernel.org/stable/c/762ef7d1e6eefad9896560bfcb9bcf7f1b6df9c1
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.