CVE-2025-38484

HIGH

Linux Kernel 6.12.23-6.12.39, 6.13.0-6.15.7 - Out-of-bounds Write in IIO Backend Buffer Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: iio: backend: fix out-of-bound write The buffer is set to 80 character. If a caller write more characters, count is truncated to the max available space in "simple_write_to_buffer". But afterwards a string terminator is written to the buffer at offset count without boundary check. The zero termination is written OUT-OF-BOUND. Add a check that the given buffer is smaller then the buffer to prevent.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/6eea9f7648ddb9e4903735a1f77cf196c957aa38

Patch

https://git.kernel.org/stable/c/01e941aa7f5175125df4ac5d3aab099961525602

Patch

https://git.kernel.org/stable/c/da9374819eb3885636934c1006d450c3cb1a02ed

Scores

CVSS v3 7.8

EPSS 0.0015

EPSS Percentile 4.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (17)

linux/Kernel < 6.12.40linux

linux/Kernel 6.13.0 - 6.15.8linux

Linux/Linux < 6.15

Linux/Linux 035b4989211dc1c8626e186d655ae8ca5141bb73 - 01e941aa7f5175125df4ac5d3aab099961525602

Linux/Linux 035b4989211dc1c8626e186d655ae8ca5141bb73 - da9374819eb3885636934c1006d450c3cb1a02ed

Linux/Linux 04271a4d2740f98bbe36f82cd3d74677a839d1eb

Linux/Linux 6.12.23 - 6.12.40

Linux/Linux 6.12.40 - 6.12.*

Linux/Linux 6.13.11 - 6.14

Linux/Linux 6.14.2 - 6.15

... and 7 more

Published Jul 28, 2025

Tracked Since Feb 18, 2026