CVE-2025-38715

Summary

In the Linux kernel, the following vulnerability has been resolved:

hfs: fix slab-out-of-bounds in hfs_bnode_read()

This patch introduces is_bnode_offset_valid() method that checks the requested offset value. Also, it introduces check_and_correct_requested_length() method that checks and correct the requested length (if it is necessary). These methods are used in hfs_bnode_read(), hfs_bnode_write(), hfs_bnode_clear(), hfs_bnode_copy(), and hfs_bnode_move() with the goal to prevent the access out of allocated memory and triggering the crash.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < e7d2dc2421e821e4045775e6dc226378328de6f6affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 67ecc81f6492275c9c54280532f558483c99c90eaffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < a1a60e79502279f996e55052f50cc14919020475affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < fe2891a9c43ab87d1a210d61e6438ca6936e2f62affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 384a66b89f9540a9a8cb0f48807697dfabaece4caffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < efc095b35b23297e419c2ab4fc1ed1a8f0781a29affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < fc7f732984ec91f30be3e574e0644066d07f2b78affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < eec522fd0d28106b14a59ab2d658605febe4a3bbaffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < a431930c9bac518bf99d6b1da526a7f37ddee8d8affected
LinuxLinux2.6.12affected
LinuxLinux0 < 2.6.12unaffected
LinuxLinux5.4.297 <= 5.4.*unaffected
LinuxLinux5.10.241 <= 5.10.*unaffected
LinuxLinux5.15.190 <= 5.15.*unaffected
LinuxLinux6.1.149 <= 6.1.*unaffected
LinuxLinux6.6.103 <= 6.6.*unaffected
LinuxLinux6.12.43 <= 6.12.*unaffected
LinuxLinux6.15.11 <= 6.15.*unaffected
LinuxLinux6.16.2 <= 6.16.*unaffected
LinuxLinux6.17 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

Additional References

References