Linux Kernel Vulnerability in Adv7842 Media Driver
CVE-2025-71136
Currently unrated
What is CVE-2025-71136?
A vulnerability exists in the Adv7842 media driver of the Linux kernel that allows for out-of-bounds array accesses due to improper handling of return values from cp_read() and hdmi_read() functions. If these functions return -EIO, the values are incorrectly used as indexes for accessing arrays, which can lead to unexpected behavior or crashes. This issue has been identified and resolved through enhancements in checking return values to mitigate potential security risks.
Affected Version(s)
Linux a89bcd4c6c2023615a89001b5a11b0bb77eb9491
Linux a89bcd4c6c2023615a89001b5a11b0bb77eb9491
Linux a89bcd4c6c2023615a89001b5a11b0bb77eb9491