CVE-2025-38676

Summary

In the Linux kernel, the following vulnerability has been resolved:

iommu/amd: Avoid stack buffer overflow from kernel cmdline

While the kernel command line is considered trusted in most environments, avoid writing 1 byte past the end of "acpiid" if the "str" argument is maximum length.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxf2a5ec7f7b28f9b9cd5fac232ff51019a7f7b9e9 < a732502bf3bbe859613b6d7b2b0313b11f0474acaffected
LinuxLinuxc513043e0afe6a8ba79d00af358655afabb576d2 < 0ad8509b468fa1058f4f400a1829f29e4ccc4de8affected
LinuxLinux2ae19ac3ea82a5b87a81c10adbb497c9e58bdd60 < 9ff52d3af0ef286535749e14e3fe9eceb39a8349affected
LinuxLinuxb6b26d86c61c441144c72f842f7469bb686e1211 < 8f80c633cba144f721d38d9380f23d23ab7db10eaffected
LinuxLinuxb6b26d86c61c441144c72f842f7469bb686e1211 < 4bdb0f78bddbfa77d3ab458a21dd9cec495d317aaffected
LinuxLinuxb6b26d86c61c441144c72f842f7469bb686e1211 < 736db11c86f03e717fc4bf771d05efdf10d23acbaffected
LinuxLinuxb6b26d86c61c441144c72f842f7469bb686e1211 < 8503d0fcb1086a7cfe26df67ca4bd9bd9e99bdecaffected
LinuxLinux5e97dc748d13fad582136ba0c8cec215c7aeeb17affected
LinuxLinux63cd11165e5e0ea2012254c764003eda1f9adb7daffected
LinuxLinux5.10.175 < 5.10.241affected
LinuxLinux5.15.103 < 5.15.190affected
LinuxLinux6.1.16 < 6.1.149affected
LinuxLinux5.4.237 < 5.5affected
LinuxLinux6.2.3 < 6.3affected
LinuxLinux6.3affected
LinuxLinux0 < 6.3unaffected
LinuxLinux5.10.241 <= 5.10.*unaffected
LinuxLinux5.15.190 <= 5.15.*unaffected
LinuxLinux6.1.149 <= 6.1.*unaffected
LinuxLinux6.6.103 <= 6.6.*unaffected
LinuxLinux6.12.44 <= 6.12.*unaffected
LinuxLinux6.16.4 <= 6.16.*unaffected
LinuxLinux6.17 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

Additional References

References