CNNVD-202509-2594 Information
CNNVD ID
CNNVD-202509-2594
Related CVE
- CNNVD Published: 2025-09-16
Description (Chinese)
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于未对get_max_inline_xattr_value_size函数进行边界检查,可能导致读取超出分配内存范围。
Description (English)
Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. Linux Kernel has a security loophole, which stems from the lack of a border check of the Get max inline xattr value size function, which may lead to reading beyond the assigned memory.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Linux
Published
2025-09-16
Last Modified
2026-02-24
References
https://git.kernel.org/stable/c/486efbbc9445dca7890a1b86adbccb88b91284b0 https://git.kernel.org/stable/c/3d7b8fbcd2273e2b9f4c6de5ce2f4c0cd3cb1205 https://git.kernel.org/stable/c/1d2caddbeeee56fbbc36b428c5b909c3ad88eb7f https://git.kernel.org/stable/c/4597554b4f7b29e7fd78aa449bab648f8da4ee2c https://git.kernel.org/stable/c/88a06a94942c5c0a896e9da1113a6bb29e36cbef https://git.kernel.org/stable/c/e780058bd75614b66882bc02620ddbd884171560 https://git.kernel.org/stable/c/f22b274429e88d3dc7e79d375b56ce4f2f59f0b4 https://git.kernel.org/stable/c/2220eaf90992c11d888fe771055d4de330385f01 https://git.kernel.org/stable/c/5a229d21b98d132673096710e8281ef522dab1d1 https://vigilance.fr/vulnerability/Linux-kernel-multiple-vulnerabilities-dated-17-09-2025-48246