Buffer Overflow Vulnerability in Dell WMI Sysman for Linux Kernel
CVE-2025-38077

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 June 2025

What is CVE-2025-38077?

A buffer overflow vulnerability exists in the Dell WMI Sysman component of the Linux kernel. This vulnerability occurs when an empty string is passed as input. The resulting zero-length 'length' variable leads to an attempt to access an out-of-bounds element of the 'buf' array, which can compromise the integrity of the system. As a mitigation, a check for empty strings has been implemented to prevent this scenario. The issue was identified by the Linux Verification Center.

Affected Version(s)

Linux e8a60aa7404bfef37705da5607c97737073ac38d

Linux e8a60aa7404bfef37705da5607c97737073ac38d < 60bd13f8c4b3de2c910ae1cdbef85b9bbc9685f5

Linux e8a60aa7404bfef37705da5607c97737073ac38d

References

https://git.kernel.org/stable/c/fb7cde625872709b8cedad9b2...

https://git.kernel.org/stable/c/60bd13f8c4b3de2c910ae1cdb...

https://git.kernel.org/stable/c/f86465626917df3b8bdd2756e...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 18, 2025
Vulnerability Reserved
Apr 16, 2025