CVE ID : CVE-2025-38342
Published : July 10, 2025, 9:15 a.m. | 4 hours, 51 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved:
software node: Correct a OOB check in software_node_get_reference_args()
software_node_get_reference_args() wants to get @index-th element, so
the property value requires at least ‘(index + 1) * sizeof(*ref)’ bytes
but that can not be guaranteed by current OOB check, and may cause OOB
for malformed property.
Fix by using as OOB check ‘((index + 1) * sizeof(*ref) > prop->length)’.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
