Array Index Out of Bounds in Linux Kernel Affecting Console Drivers
CVE-2025-38198
Currently unrated
What is CVE-2025-38198?
A vulnerability in the Linux kernel's console driver subsystem can lead to an array index out-of-bounds error when interacting with unregistered consoles. This issue occurs when writing to the 'store_modes' sysfs node, potentially resulting in erroneous behavior and system instability. If the console mapping, containing an invalid index, is accessed, it can cause improper error handling, leaving systems vulnerable to unexpected behaviors or crashes. Proper error handling measures should be implemented to ensure stability in console operations.
Affected Version(s)
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 519ba75728ee8cd561dce25fc52a2ec5c47171dc
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2