CVE-2025-39714
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
media: usbtv: Lock resolution while streaming
When an program is streaming (ffplay) and another program (qv4l2) changes the TV standard from NTSC to PAL, the kernel crashes due to trying to copy to unmapped memory.
Changing from NTSC to PAL increases the resolution in the usbtv struct, but the video plane buffer isn't adjusted, so it overflows.
[hverkuil: call vb2_is_busy instead of vb2_is_streaming]
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 0e0fe3958fdd13dbf55c3a787acafde6efd04272 < c35e7c7a004ef379a1ae7c7486d4829419acad1d | affected |
| Linux | Linux | 0e0fe3958fdd13dbf55c3a787acafde6efd04272 < ee7bade8b9244834229b12b6e1e724939bedd484 | affected |
| Linux | Linux | 0e0fe3958fdd13dbf55c3a787acafde6efd04272 < 5427dda195d6baf23028196fd55a0c90f66ffa61 | affected |
| Linux | Linux | 0e0fe3958fdd13dbf55c3a787acafde6efd04272 < ef9b3c22405192afaa279077ddd45a51db90b83d | affected |
| Linux | Linux | 0e0fe3958fdd13dbf55c3a787acafde6efd04272 < 3d83d0b5ae5045a7a246ed116b5f6c688a12f9e9 | affected |
| Linux | Linux | 0e0fe3958fdd13dbf55c3a787acafde6efd04272 < c3d75524e10021aa5c223d94da4996640aed46c0 | affected |
| Linux | Linux | 0e0fe3958fdd13dbf55c3a787acafde6efd04272 < 9f886d21e235c4bd038cb20f6696084304197ab3 | affected |
| Linux | Linux | 0e0fe3958fdd13dbf55c3a787acafde6efd04272 < 7e40e0bb778907b2441bff68d73c3eb6b6cd319f | affected |
| Linux | Linux | 3.14 | affected |
| Linux | Linux | 0 < 3.14 | unaffected |
| Linux | Linux | 5.4.297 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.241 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.190 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.149 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.103 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.44 <= 6.12.* | unaffected |
| Linux | Linux | 6.16.4 <= 6.16.* | unaffected |
| Linux | Linux | 6.17 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
Additional References
References
- https://git.kernel.org/stable/c/c35e7c7a004ef379a1ae7c7486d4829419acad1d
- https://git.kernel.org/stable/c/ee7bade8b9244834229b12b6e1e724939bedd484
- https://git.kernel.org/stable/c/5427dda195d6baf23028196fd55a0c90f66ffa61
- https://git.kernel.org/stable/c/ef9b3c22405192afaa279077ddd45a51db90b83d
- https://git.kernel.org/stable/c/3d83d0b5ae5045a7a246ed116b5f6c688a12f9e9
- https://git.kernel.org/stable/c/c3d75524e10021aa5c223d94da4996640aed46c0
- https://git.kernel.org/stable/c/9f886d21e235c4bd038cb20f6696084304197ab3
- https://git.kernel.org/stable/c/7e40e0bb778907b2441bff68d73c3eb6b6cd319f
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.