Memory Corruption Vulnerability in Linux Kernel Affecting DMA Operations
CVE-2025-38401
Currently unrated
What is CVE-2025-38401?
A vulnerability exists in the Linux kernel related to the mtk-sd subsystem that can lead to memory corruption. If the msdc_prepare_data() function fails to properly map the DMA region, the subsequent msdc_start_data() function erroneously proceeds with previous settings, potentially leading to unauthorized memory operations. This flaw necessitates immediate cessation of the request operation following a failure in data preparation to prevent memory corruption and ensure system integrity.
Affected Version(s)
Linux 208489032bdd8d4a7de50f3057c175058f271956 < 5ac9e9e2e9cd6247d8c2d99780eae4556049e1cc
Linux 208489032bdd8d4a7de50f3057c175058f271956
Linux 208489032bdd8d4a7de50f3057c175058f271956 < 48bf4f3dfcdab02b22581d8e350a2d23130b72c0