Buffer Overflow Vulnerability in Linux Kernel CAN Driver from Vendor Linux
CVE-2025-39986

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 15 October 2025

What is CVE-2025-39986?

A vulnerability in the Linux kernel CAN driver allows for buffer overflow due to improper handling of the MTU setting. An attacker can bypass the CAN framework logic and send malformed CAN XL frames by exploiting the PF_PACKET socket. This occurs because the sun4i_can driver fails to implement the necessary check in its net_device_ops->ndo_change_mtu(), allowing for a maliciously large MTU configuration. Consequently, the xmit() function in the CAN driver misinterprets the input, potentially leading to serious memory corruption and system instability.

Affected Version(s)

Linux 0738eff14d817a02ab082c392c96a1613006f158 < 063539db42203b29d5aa2adf0cae3d68c646a6b6

Linux 0738eff14d817a02ab082c392c96a1613006f158 < 4f382cc887adca8478b9d3e6b81aa6698a95fff4

Linux 0738eff14d817a02ab082c392c96a1613006f158 < 60463a1c138900494cb3adae41142a11cd8feb3c

References

https://git.kernel.org/stable/c/063539db42203b29d5aa2adf0...

https://git.kernel.org/stable/c/4f382cc887adca8478b9d3e6b...

https://git.kernel.org/stable/c/60463a1c138900494cb3adae4...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 15, 2025
Vulnerability Reserved
Apr 16, 2025

JSON