CVE-2025-39710
media: venus: Add a check for packet size after reading from shared memory
In the Linux kernel, the following vulnerability has been resolved:
media: venus: Add a check for packet size after reading from shared memory
Add a check to ensure that the packet size does not exceed the number of
available words after reading the packet header from shared memory. This
ensures that the size provided by the firmware is safe to process and
prevent potential out-of-bounds memory access.
Produtos afetados
Linux · LinuxQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://cert-portal.siemens.com/productcert/html/ssa-032379.htmlhttps://git.kernel.org/stable/c/0520c89f6280d2b60ab537d5743601185ee7d8abhttps://git.kernel.org/stable/c/2d8cea8310a245730816a1fd0c9fa4a5a3bdc68chttps://git.kernel.org/stable/c/49befc830daa743e051a65468c05c2ff9e8580e6https://git.kernel.org/stable/c/7638bae4539dcebc3f68fda74ac35d73618ec440https://git.kernel.org/stable/c/ba567c2e52fbcf0e20502746bdaa79e911c2e8cfhttps://git.kernel.org/stable/c/ef09b96665f16f3f0bac4e111160e6f24f1f8791https://git.kernel.org/stable/c/f0cbd9386f974d310a0d20a02e4a1323e95ea654https://git.kernel.org/stable/c/f5b7a943055a4a106d40a03bacd940e28cc1955fhttps://lists.debian.org/debian-lts-announce/2025/10/msg00007.htmlhttps://lists.debian.org/debian-lts-announce/2025/10/msg00008.html