CVE-2025-39778

In the Linux kernel, the following vulnerability has been resolved: objtool, nvmet: Fix out-of-bounds stack access in nvmet_ctrl_state_show() The csts_state_names[] array only has six sparse entries, but the iteration code in nvmet_ctrl_state_show() iterates seven, resulting in a potential out-of-bounds stack read. Fix that. Fixes the following warning with an UBSAN kernel: vmlinux.o: warning: objtool: .text.nvmet_ctrl_state_show: unexpected end of section
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

28 Apr 2025, 15:37

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.1
References () https://git.kernel.org/stable/c/0cc0efc58d6c741b2868d4af24874d7fec28a575 - () https://git.kernel.org/stable/c/0cc0efc58d6c741b2868d4af24874d7fec28a575 - Patch
References () https://git.kernel.org/stable/c/107a23185d990e3df6638d9a84c835f963fe30a6 - () https://git.kernel.org/stable/c/107a23185d990e3df6638d9a84c835f963fe30a6 - Patch
References () https://git.kernel.org/stable/c/1adc93a525fdee8e2b311e6d5fd93eb69714ca05 - () https://git.kernel.org/stable/c/1adc93a525fdee8e2b311e6d5fd93eb69714ca05 - Patch
References () https://git.kernel.org/stable/c/8fbf37a3577b4d64c150cafde338eee17b2f2ea4 - () https://git.kernel.org/stable/c/8fbf37a3577b4d64c150cafde338eee17b2f2ea4 - Patch
First Time Linux
Linux linux Kernel
CWE CWE-125
Summary
  • (es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: objtool, nvmet: Se corrige el acceso a la pila fuera de los límites en nvmet_ctrl_state_show(). La matriz csts_state_names[] solo tiene seis entradas dispersas, pero el código de iteración en nvmet_ctrl_state_show() itera siete, lo que resulta en una posible lectura de la pila fuera de los límites. Se soluciona. Se corrige la siguiente advertencia con un kernel UBSAN: vmlinux.o: advertencia: objtool: .text.nvmet_ctrl_state_show: final inesperado de sección.
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

18 Apr 2025, 07:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-04-18 07:15

Updated : 2025-10-01 17:15


NVD link : CVE-2025-39778

Mitre link : CVE-2025-39778

CVE.ORG link : CVE-2025-39778


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-125

Out-of-bounds Read