Memory Boundary Vulnerability in the Linux Kernel for ARM Tegra Products
CVE-2025-39794

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 12 September 2025

What is CVE-2025-39794?

A critical issue has been identified in the Linux kernel related to the ARM Tegra architecture. The vulnerability arises when the kernel attempts to use the standard memcpy function to write to IRAM, leading to potential crashes when Kasan, the kernel address sanitizer, checks for boundaries. This flaw poses a risk of instability and unreliable operation in systems utilizing the affected components, particularly when proper memory boundary checks are bypassed during operations.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 75a3bdfeed2f129a2c7d9fd7779382b78e35b014

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 2499b0ac908eefbb8a217aae609b7a5b5174f330

References

https://git.kernel.org/stable/c/b28c1a14accc79ead1e87bbda...

https://git.kernel.org/stable/c/75a3bdfeed2f129a2c7d9fd77...

https://git.kernel.org/stable/c/2499b0ac908eefbb8a217aae6...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 12, 2025
Vulnerability Reserved
Apr 16, 2025