CVE-2025-39710
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
media: venus: Add a check for packet size after reading from shared memory
Add a check to ensure that the packet size does not exceed the number of available words after reading the packet header from shared memory. This ensures that the size provided by the firmware is safe to process and prevent potential out-of-bounds memory access.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | d96d3f30c0f2f564f6922bf4ccdf4464992e31fb < 0520c89f6280d2b60ab537d5743601185ee7d8ab | affected |
| Linux | Linux | d96d3f30c0f2f564f6922bf4ccdf4464992e31fb < f5b7a943055a4a106d40a03bacd940e28cc1955f | affected |
| Linux | Linux | d96d3f30c0f2f564f6922bf4ccdf4464992e31fb < ef09b96665f16f3f0bac4e111160e6f24f1f8791 | affected |
| Linux | Linux | d96d3f30c0f2f564f6922bf4ccdf4464992e31fb < 7638bae4539dcebc3f68fda74ac35d73618ec440 | affected |
| Linux | Linux | d96d3f30c0f2f564f6922bf4ccdf4464992e31fb < ba567c2e52fbcf0e20502746bdaa79e911c2e8cf | affected |
| Linux | Linux | d96d3f30c0f2f564f6922bf4ccdf4464992e31fb < 2d8cea8310a245730816a1fd0c9fa4a5a3bdc68c | affected |
| Linux | Linux | d96d3f30c0f2f564f6922bf4ccdf4464992e31fb < f0cbd9386f974d310a0d20a02e4a1323e95ea654 | affected |
| Linux | Linux | d96d3f30c0f2f564f6922bf4ccdf4464992e31fb < 49befc830daa743e051a65468c05c2ff9e8580e6 | affected |
| Linux | Linux | 4.13 | affected |
| Linux | Linux | 0 < 4.13 | unaffected |
| Linux | Linux | 5.4.297 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.241 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.190 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.149 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.103 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.44 <= 6.12.* | unaffected |
| Linux | Linux | 6.16.4 <= 6.16.* | unaffected |
| Linux | Linux | 6.17 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
Additional References
References
- https://git.kernel.org/stable/c/0520c89f6280d2b60ab537d5743601185ee7d8ab
- https://git.kernel.org/stable/c/f5b7a943055a4a106d40a03bacd940e28cc1955f
- https://git.kernel.org/stable/c/ef09b96665f16f3f0bac4e111160e6f24f1f8791
- https://git.kernel.org/stable/c/7638bae4539dcebc3f68fda74ac35d73618ec440
- https://git.kernel.org/stable/c/ba567c2e52fbcf0e20502746bdaa79e911c2e8cf
- https://git.kernel.org/stable/c/2d8cea8310a245730816a1fd0c9fa4a5a3bdc68c
- https://git.kernel.org/stable/c/f0cbd9386f974d310a0d20a02e4a1323e95ea654
- https://git.kernel.org/stable/c/49befc830daa743e051a65468c05c2ff9e8580e6
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.