CVE-2025-68819

Linux Kernel - Out-of-Bounds Write in dtv5100_i2c_msg()

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() rlen value is a user-controlled value, but dtv5100_i2c_msg() does not check the size of the rlen value. Therefore, if it is set to a value larger than sizeof(st->data), an out-of-bounds vuln occurs for st->data. Therefore, we need to add proper range checking to prevent this vuln.

References (7)

Core 7

Core References

Patch

https://git.kernel.org/stable/c/c2c293ea7b61f12cdaad1e99a5b4efc58c88960a

Patch

https://git.kernel.org/stable/c/c2305b4c5fc15e20ac06c35738e0578eb4323750

Patch

https://git.kernel.org/stable/c/61f214a878e96e2a8750bf96a98f78c658dba60c

Patch

https://git.kernel.org/stable/c/4a54d8fcb093761e4c56eb211cf4e39bf8401fa1

Patch

https://git.kernel.org/stable/c/fe3e129ab49806aaaa3f22067ebc75c2dfbe4658

Patch

https://git.kernel.org/stable/c/ac92151ff2494130d9fc686055d6bbb9743a673e

Patch

https://git.kernel.org/stable/c/b91e6aafe8d356086cc621bc03e35ba2299e4788

Scores

EPSS 0.0007

EPSS Percentile 21.0%

Details

Status published

Products (22)

linux/Kernel 2.6.28 - 5.10.248linux

linux/Kernel 5.11.0 - 5.15.198linux

linux/Kernel 5.16.0 - 6.1.160linux

linux/Kernel 6.13.0 - 6.18.3linux

linux/Kernel 6.2.0 - 6.6.120linux

linux/Kernel 6.7.0 - 6.12.64linux

Linux/Linux < 2.6.28

Linux/Linux 2.6.28

Linux/Linux 5.10.248 - 5.10.*

Linux/Linux 5.15.198 - 5.15.*

... and 12 more

Published Jan 13, 2026

Tracked Since Feb 18, 2026