CVE-2025-40302
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
media: videobuf2: forbid remove_bufs when legacy fileio is active
vb2_ioctl_remove_bufs() call manipulates queue internal buffer list, potentially overwriting some pointers used by the legacy fileio access mode. Forbid that ioctl when fileio is active to protect internal queue state between subsequent read/write calls.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | a3293a85381ec9680aa2929547fbc76c5d87a1b2 < a6a493b985bfffac097a4e1be09f98b27729dca8 | affected |
| Linux | Linux | a3293a85381ec9680aa2929547fbc76c5d87a1b2 < e819b34df0a7030a15c968d619fa8a3ed2455c7a | affected |
| Linux | Linux | a3293a85381ec9680aa2929547fbc76c5d87a1b2 < 27afd6e066cfd80ddbe22a4a11b99174ac89cced | affected |
| Linux | Linux | 6.10 | affected |
| Linux | Linux | 0 < 6.10 | unaffected |
| Linux | Linux | 6.12.58 <= 6.12.* | unaffected |
| Linux | Linux | 6.17.8 <= 6.17.* | unaffected |
| Linux | Linux | 6.18 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/a6a493b985bfffac097a4e1be09f98b27729dca8
- https://git.kernel.org/stable/c/e819b34df0a7030a15c968d619fa8a3ed2455c7a
- https://git.kernel.org/stable/c/27afd6e066cfd80ddbe22a4a11b99174ac89cced
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.