Slab Out-of-Bounds Vulnerability in Linux Kernel's vgacon Feature
CVE-2025-38213
What is CVE-2025-38213?
A vulnerability has been identified in the Linux Kernel's vgacon component, which can lead to a slab out-of-bounds read. This issue was detected during testing and has been associated with improper checks on the vc_origin address range in the vgacon_scroll function. Exploitation of this vulnerability could lead to unauthorized access to kernel memory, potentially allowing attackers to manipulate system behavior or crash the kernel. The Linux development community has taken steps to resolve this issue through recent patches, emphasizing the importance of regular system updates.
Affected Version(s)
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 843de5fbfe277e30fb333a7fa033b684c37829ac
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2