CVE-2025-39888

Summary

In the Linux kernel, the following vulnerability has been resolved:

fuse: Block access to folio overlimit

syz reported a slab-out-of-bounds Write in fuse_dev_do_write.

When the number of bytes to be retrieved is truncated to the upper limit by fc->max_pages and there is an offset, the oob is triggered.

Add a loop termination condition to prevent overruns.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux3568a956932621cafadafc8b75fcf6dc06555105 < 623719227b114d73a2cee45f1b343ced63ce09ecaffected
LinuxLinux3568a956932621cafadafc8b75fcf6dc06555105 < 9d81ba6d49a7457784f0b6a71046818b86ec7e44affected
LinuxLinux6.16affected
LinuxLinux0 < 6.16unaffected
LinuxLinux6.16.8 <= 6.16.*unaffected
LinuxLinux6.17 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References