CVE-2025-39680
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
05/09/2025
Last modified:
08/09/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
i2c: rtl9300: Fix out-of-bounds bug in rtl9300_i2c_smbus_xfer<br />
<br />
The data->block[0] variable comes from user. Without proper check,<br />
the variable may be very large to cause an out-of-bounds bug.<br />
<br />
Fix this bug by checking the value of data->block[0] first.<br />
<br />
1. commit 39244cc75482 ("i2c: ismt: Fix an out-of-bounds bug in<br />
ismt_access()")<br />
2. commit 92fbb6d1296f ("i2c: xgene-slimpro: Fix out-of-bounds bug in<br />
xgene_slimpro_i2c_xfer()")