Slab-Out-of-Bounds Vulnerability in Linux Kernel efivarfs Product by Linux Foundation
CVE-2025-39817
What is CVE-2025-39817?
A vulnerability in the Linux kernel's efivarfs component can lead to a slab-out-of-bounds condition when valid entries are not properly verified during concurrent lookups. This issue arises when the length of a dentry's name is less than the length of the EFI variable GUID, which can result in a negative value for the 'guid' variable. Consequently, if invalid directory entries are added to the hash list during parallel lookups, it can lead to out-of-bounds memory access during comparison operations. The issue has been mitigated by implementing checks on the 'guid' before performing the comparison to prevent potential exploitation.
Affected Version(s)
Linux da27a24383b2b10bf6ebd0db29b325548aafecb4 < 0f63fbabeaaaaaaf5b742a2f4c1b4590d50bf1f6
Linux da27a24383b2b10bf6ebd0db29b325548aafecb4 < 794399019301944fd6d2e0d7a51b3327e26c410e
Linux da27a24383b2b10bf6ebd0db29b325548aafecb4 < 568e7761279b99c6daa3002290fd6d8047ddb6d2