CVE-2025-38676
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
iommu/amd: Avoid stack buffer overflow from kernel cmdline
While the kernel command line is considered trusted in most environments, avoid writing 1 byte past the end of "acpiid" if the "str" argument is maximum length.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | f2a5ec7f7b28f9b9cd5fac232ff51019a7f7b9e9 < a732502bf3bbe859613b6d7b2b0313b11f0474ac | affected |
| Linux | Linux | c513043e0afe6a8ba79d00af358655afabb576d2 < 0ad8509b468fa1058f4f400a1829f29e4ccc4de8 | affected |
| Linux | Linux | 2ae19ac3ea82a5b87a81c10adbb497c9e58bdd60 < 9ff52d3af0ef286535749e14e3fe9eceb39a8349 | affected |
| Linux | Linux | b6b26d86c61c441144c72f842f7469bb686e1211 < 8f80c633cba144f721d38d9380f23d23ab7db10e | affected |
| Linux | Linux | b6b26d86c61c441144c72f842f7469bb686e1211 < 4bdb0f78bddbfa77d3ab458a21dd9cec495d317a | affected |
| Linux | Linux | b6b26d86c61c441144c72f842f7469bb686e1211 < 736db11c86f03e717fc4bf771d05efdf10d23acb | affected |
| Linux | Linux | b6b26d86c61c441144c72f842f7469bb686e1211 < 8503d0fcb1086a7cfe26df67ca4bd9bd9e99bdec | affected |
| Linux | Linux | 5e97dc748d13fad582136ba0c8cec215c7aeeb17 | affected |
| Linux | Linux | 63cd11165e5e0ea2012254c764003eda1f9adb7d | affected |
| Linux | Linux | 5.10.175 < 5.10.241 | affected |
| Linux | Linux | 5.15.103 < 5.15.190 | affected |
| Linux | Linux | 6.1.16 < 6.1.149 | affected |
| Linux | Linux | 5.4.237 < 5.5 | affected |
| Linux | Linux | 6.2.3 < 6.3 | affected |
| Linux | Linux | 6.3 | affected |
| Linux | Linux | 0 < 6.3 | unaffected |
| Linux | Linux | 5.10.241 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.190 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.149 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.103 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.44 <= 6.12.* | unaffected |
| Linux | Linux | 6.16.4 <= 6.16.* | unaffected |
| Linux | Linux | 6.17 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
Additional References
References
- https://git.kernel.org/stable/c/a732502bf3bbe859613b6d7b2b0313b11f0474ac
- https://git.kernel.org/stable/c/0ad8509b468fa1058f4f400a1829f29e4ccc4de8
- https://git.kernel.org/stable/c/9ff52d3af0ef286535749e14e3fe9eceb39a8349
- https://git.kernel.org/stable/c/8f80c633cba144f721d38d9380f23d23ab7db10e
- https://git.kernel.org/stable/c/4bdb0f78bddbfa77d3ab458a21dd9cec495d317a
- https://git.kernel.org/stable/c/736db11c86f03e717fc4bf771d05efdf10d23acb
- https://git.kernel.org/stable/c/8503d0fcb1086a7cfe26df67ca4bd9bd9e99bdec
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.