| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <2025052057-CVE-2025-37892-2103@gregkh> Date: Tue, 20 May 2025 12:59:58 +0200 From: Greg Kroah-Hartman <gregkh@...uxfoundation.org> To: linux-cve-announce@...r.kernel.org Cc: Greg Kroah-Hartman <gregkh@...nel.org> Subject: CVE-2025-37892: mtd: inftlcore: Add error check for inftl_read_oob() From: Greg Kroah-Hartman <gregkh@...nel.org> Description =========== In the Linux kernel, the following vulnerability has been resolved: mtd: inftlcore: Add error check for inftl_read_oob() In INFTL_findwriteunit(), the return value of inftl_read_oob() need to be checked. A proper implementation can be found in INFTL_deleteblock(). The status will be set as SECTOR_IGNORE to break from the while-loop correctly if the inftl_read_oob() fails. The Linux kernel CVE team has assigned CVE-2025-37892 to this issue. Affected and fixed versions =========================== Issue introduced in 2.6.18 with commit 8593fbc68b0df1168995de76d1af38eb62fd6b62 and fixed in 5.4.293 with commit b828d394308e8e00df0a6f57e7dabae609bb8b7b Issue introduced in 2.6.18 with commit 8593fbc68b0df1168995de76d1af38eb62fd6b62 and fixed in 5.10.237 with commit 0300e751170cf80c05ca1a762a7b449e8ca6b693 Issue introduced in 2.6.18 with commit 8593fbc68b0df1168995de76d1af38eb62fd6b62 and fixed in 5.15.181 with commit e7d6ceff95c55297f0ee8f9dbc4da5c558f30e9e Issue introduced in 2.6.18 with commit 8593fbc68b0df1168995de76d1af38eb62fd6b62 and fixed in 6.1.135 with commit 6af3b92b1c0b58ca281d0e1501bad2567f73c1a5 Issue introduced in 2.6.18 with commit 8593fbc68b0df1168995de76d1af38eb62fd6b62 and fixed in 6.6.88 with commit 7772621041ee78823ccc5f1fe38f6faa22af7023 Issue introduced in 2.6.18 with commit 8593fbc68b0df1168995de76d1af38eb62fd6b62 and fixed in 6.12.24 with commit 5479a6af3c96f73bec2d2819532b6d6814f52dd6 Issue introduced in 2.6.18 with commit 8593fbc68b0df1168995de76d1af38eb62fd6b62 and fixed in 6.13.12 with commit 1c22356dfb041e5292835c9ff44d5f91bef8dd18 Issue introduced in 2.6.18 with commit 8593fbc68b0df1168995de76d1af38eb62fd6b62 and fixed in 6.14.3 with commit 114d94f095aa405fa9a51484c4be34846d7bb386 Issue introduced in 2.6.18 with commit 8593fbc68b0df1168995de76d1af38eb62fd6b62 and fixed in 6.15-rc2 with commit d027951dc85cb2e15924c980dc22a6754d100c7c Please see https://www.kernel.org for a full list of currently supported kernel versions by the kernel community. Unaffected versions might change over time as fixes are backported to older supported kernel versions. The official CVE entry at https://cve.org/CVERecord/?id=CVE-2025-37892 will be updated if fixes are backported, please check that for the most up to date information about this issue. Affected files ============== The file(s) affected by this issue are: drivers/mtd/inftlcore.c Mitigation ========== The Linux kernel CVE team recommends that you update to the latest stable kernel version for this, and many other bugfixes. Individual changes are never tested alone, but rather are part of a larger kernel release. Cherry-picking individual commits is not recommended or supported by the Linux kernel community at all. If however, updating to the latest release is impossible, the individual changes to resolve this issue can be found at these commits: https://git.kernel.org/stable/c/b828d394308e8e00df0a6f57e7dabae609bb8b7b https://git.kernel.org/stable/c/0300e751170cf80c05ca1a762a7b449e8ca6b693 https://git.kernel.org/stable/c/e7d6ceff95c55297f0ee8f9dbc4da5c558f30e9e https://git.kernel.org/stable/c/6af3b92b1c0b58ca281d0e1501bad2567f73c1a5 https://git.kernel.org/stable/c/7772621041ee78823ccc5f1fe38f6faa22af7023 https://git.kernel.org/stable/c/5479a6af3c96f73bec2d2819532b6d6814f52dd6 https://git.kernel.org/stable/c/1c22356dfb041e5292835c9ff44d5f91bef8dd18 https://git.kernel.org/stable/c/114d94f095aa405fa9a51484c4be34846d7bb386 https://git.kernel.org/stable/c/d027951dc85cb2e15924c980dc22a6754d100c7c
Powered by blists - more mailing lists