Out of bounds bit shift vulnerability in Linux kernel affecting multiple products
CVE-2025-38530

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 August 2025

What is CVE-2025-38530?

A vulnerability has been identified in the Linux kernel concerning the comedi driver for the pcl812 product. The flaw arises from improper validation of an integer value sourced from userspace, potentially leading to out-of-bounds bit shifts. Specifically, the check for a supported IRQ number can result in negative or excessive shift amounts when unchecked inputs are processed. This oversight necessitates an amendment to the existing validation logic to ensure that ‘it->options[1]’ is confined to valid IRQ range values, explicitly establishing that only numbers from 1 to 15 are permissible for selecting interrupts, while the value zero indicates that interrupts should not be utilized.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch