Out of Bounds Memory Access in Linux Kernel Firmware by Vendor
CVE-2025-38329

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 10 July 2025

What is CVE-2025-38329?

A vulnerability has been identified in the firmware of the Linux kernel related to out of bounds memory access during KUnit testing operations in cs_dsp. This issue arises due to improper handling of source string lengths, leading to potential read access outside of allocated memory regions. Mitigating this vulnerability is crucial for maintaining system integrity and security, particularly in environments that rely on the affected kernel versions.

Affected Version(s)

Linux 5cf1b7b471803f7cc654a29ee16cb085ad69c097 < 0000a2303ba78b6424ff15b5085b5f5098750a2e

Linux 5cf1b7b471803f7cc654a29ee16cb085ad69c097

Linux 6.14

References

https://git.kernel.org/stable/c/0000a2303ba78b6424ff15b50...

https://git.kernel.org/stable/c/d979b783d61f7f1f95664031b...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 10, 2025
Vulnerability Reserved
Apr 16, 2025