CVE-2025-38340

Summary

In the Linux kernel, the following vulnerability has been resolved:

firmware: cs_dsp: Fix OOB memory read access in KUnit test

KASAN reported out of bounds access - cs_dsp_mock_bin_add_name_or_info(), because the source string length was rounded up to the allocation size.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7c052c6615297ff32032105130cd5f02059f7ae4 < 8f4cc454a0bb45b800bc7817c09c8f72e31901f3affected
LinuxLinux7c052c6615297ff32032105130cd5f02059f7ae4 < fe6446215bfad11cf3b446f38b28dc7708973c25affected
LinuxLinux6.14affected
LinuxLinux0 < 6.14unaffected
LinuxLinux6.15.4 <= 6.15.*unaffected
LinuxLinux6.16 <= *unaffected

Weaknesses

References