Overlapping Mappings in STM32's NAND Controller
CVE-2025-39907

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
1 October 2025

What is CVE-2025-39907?

A vulnerability has been identified in the STM32MP257F's NAND controller regarding overlapping mappings on the ECC buffer. This issue can lead to cacheline tracking errors and improper handling of DMA mappings, potentially compromising data integrity during NAND operations. To mitigate this, the affected Linux kernel components have been revised to utilize a contiguous non-cacheable buffer, which prevents the occurrence of overlapping mappings. Users are advised to update their systems to ensure the reliability and security of their operations.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 2cd457f328c100bc98e36d55fe210e9ab067c704

Linux 2cd457f328c100bc98e36d55fe210e9ab067c704

Linux 2cd457f328c100bc98e36d55fe210e9ab067c704

References

https://git.kernel.org/stable/c/dc1c6e60993b93b87604eb112...
https://git.kernel.org/stable/c/dfe2ac47a6ee0ab5039369451...
https://git.kernel.org/stable/c/e32a2ea52b51368774d014e5b...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.