Out-of-Bounds Read Vulnerability in Linux Kernel USB Core
CVE-2025-39760

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 11 September 2025

What is CVE-2025-39760?

A vulnerability has been identified in the Linux kernel's USB core that allows for out-of-bounds reads within the SS endpoint companion parsing. Specifically, the function usb_parse_ss_endpoint_companion() inadequately checks the descriptor type against the specified length before accessing fields, which could lead to unauthorized access to memory. This oversight has been addressed by implementing better size validation checks before field access to enhance overall security and system integrity.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 5c3097ede7835d3caf6543eb70ff689af4550cd2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 058ad2b722812708fe90567875704ae36563e33b

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

References

https://git.kernel.org/stable/c/5c3097ede7835d3caf6543eb7...

https://git.kernel.org/stable/c/058ad2b722812708fe9056787...

https://git.kernel.org/stable/c/b10e0f868067c6f25bbfabdcf...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 11, 2025
Vulnerability Reserved
Apr 16, 2025