CNNVD-202509-3129 Information

CNNVD ID

CNNVD-202509-3129

Related CVE

CVE-2025-39840

• CNNVD Published: 2025-09-19

Description (Chinese)

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于audit_compare_dname_path函数中缺少路径长度检查，可能导致越界读取。

Description (English)

Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. There is a security loophole in Linux Kernel, which stems from the absence of a path length check in the Audit compare dname path function, which may lead to cross-border reading.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Liquidfiles

Published

2025-09-19

Last Modified

2026-02-24

References

https://git.kernel.org/stable/c/9735a9dcc307427e7d6336c54171682f1bac9789 https://git.kernel.org/stable/c/4540f1d23e7f387880ce46d11b5cd3f27248bf8d https://vigilance.fr/vulnerability/Linux-kernel-multiple-vulnerabilities-dated-22-09-2025-48265

Patch

https://www.kernel.org/