| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <2025050814-CVE-2025-37803-0c5c@gregkh> Date: Thu, 8 May 2025 08:39:12 +0200 From: Greg Kroah-Hartman <gregkh@...uxfoundation.org> To: linux-cve-announce@...r.kernel.org Cc: Greg Kroah-Hartman <gregkh@...nel.org> Subject: CVE-2025-37803: udmabuf: fix a buf size overflow issue during udmabuf creation From: Greg Kroah-Hartman <gregkh@...nel.org> Description =========== In the Linux kernel, the following vulnerability has been resolved: udmabuf: fix a buf size overflow issue during udmabuf creation by casting size_limit_mb to u64 when calculate pglimit. The Linux kernel CVE team has assigned CVE-2025-37803 to this issue. Affected and fixed versions =========================== Fixed in 5.4.293 with commit e84a08fc7e25cdad5d9a3def42cc770ff711193f Fixed in 5.10.237 with commit 13fe12c037b470321436deec393030c6153cfeb9 Fixed in 5.15.181 with commit 373512760e13fdaa726faa9502d0f5be2abb3d33 Fixed in 6.1.136 with commit 3f6c9d66e0f8eb9679b57913aa64b4d2266f6fbe Fixed in 6.6.89 with commit b2ff4e9c599b000833d16a917f519aa2e4a75de2 Fixed in 6.14.5 with commit 2b8419c6ecf69007dcff54ea0b9f0b215282c55a Fixed in 6.15-rc2 with commit 021ba7f1babd029e714d13a6bf2571b08af96d0f Please see https://www.kernel.org for a full list of currently supported kernel versions by the kernel community. Unaffected versions might change over time as fixes are backported to older supported kernel versions. The official CVE entry at https://cve.org/CVERecord/?id=CVE-2025-37803 will be updated if fixes are backported, please check that for the most up to date information about this issue. Affected files ============== The file(s) affected by this issue are: drivers/dma-buf/udmabuf.c Mitigation ========== The Linux kernel CVE team recommends that you update to the latest stable kernel version for this, and many other bugfixes. Individual changes are never tested alone, but rather are part of a larger kernel release. Cherry-picking individual commits is not recommended or supported by the Linux kernel community at all. If however, updating to the latest release is impossible, the individual changes to resolve this issue can be found at these commits: https://git.kernel.org/stable/c/e84a08fc7e25cdad5d9a3def42cc770ff711193f https://git.kernel.org/stable/c/13fe12c037b470321436deec393030c6153cfeb9 https://git.kernel.org/stable/c/373512760e13fdaa726faa9502d0f5be2abb3d33 https://git.kernel.org/stable/c/3f6c9d66e0f8eb9679b57913aa64b4d2266f6fbe https://git.kernel.org/stable/c/b2ff4e9c599b000833d16a917f519aa2e4a75de2 https://git.kernel.org/stable/c/2b8419c6ecf69007dcff54ea0b9f0b215282c55a https://git.kernel.org/stable/c/021ba7f1babd029e714d13a6bf2571b08af96d0f
Powered by blists - more mailing lists