CVE-2025-39680
Gravedad:
Pendiente de análisis
Tipo:
No Disponible / Otro tipo
Fecha de publicación:
05/09/2025
Última modificación:
08/09/2025
Descripción
*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
i2c: rtl9300: Fix out-of-bounds bug in rtl9300_i2c_smbus_xfer<br />
<br />
The data->block[0] variable comes from user. Without proper check,<br />
the variable may be very large to cause an out-of-bounds bug.<br />
<br />
Fix this bug by checking the value of data->block[0] first.<br />
<br />
1. commit 39244cc75482 ("i2c: ismt: Fix an out-of-bounds bug in<br />
ismt_access()")<br />
2. commit 92fbb6d1296f ("i2c: xgene-slimpro: Fix out-of-bounds bug in<br />
xgene_slimpro_i2c_xfer()")