Out-of-Bounds Write Vulnerability in Linux Kernel Graphics Rendering
CVE-2025-40304

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 8 December 2025

What is CVE-2025-40304?

The Linux kernel has addressed a significant vulnerability affecting framebuffer handling, specifically in the bit_putcs function. This issue allowed for potential out-of-bounds writes when rendering text near the edges of the screen. Implementing bounds checking ensures that writes do not extend beyond framebuffer limits. The updated mechanism stops the rendering process if the Y position exceeds screen boundaries and adjusts the image height accordingly to prevent mismatched buffer sizes. This fix also ensures that the character count aligns with the clipped width of the image, mitigating the risk of buffer overflows that could compromise system stability and security.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 996bfaa7372d6718b6d860bdf78f6618e850c702

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1943b69e87b0ab35032d47de0a7fca9a3d1d6fc1

References

https://git.kernel.org/stable/c/996bfaa7372d6718b6d860bdf...

https://git.kernel.org/stable/c/f0982400648a3e00580253e0c...

https://git.kernel.org/stable/c/1943b69e87b0ab35032d47de0...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 8, 2025
Vulnerability Reserved
Apr 16, 2025

JSON