CNNVD-202510-3837 Information

CNNVD ID

CNNVD-202510-3837

Related CVE

CVE-2025-40082

• CNNVD Published: 2025-10-28

Description (Chinese)

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于hfsplus_uni2asc函数中存在越界读取，可能导致内存损坏。

Description (English)

Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. There is a security loophole in Linux Kernel, which stems from the presence of cross-border reading in the Hfsplus uni2asc function, which may cause memory damage.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Linux

Published

2025-10-28

Last Modified

2026-02-24

References

https://git.kernel.org/stable/c/bea3e1d4467bcf292c8e54f080353d556d355e26 https://git.kernel.org/stable/c/857aefc70d4ae3b9bf1ae67434d27d0f79f80c9e https://vigilance.fr/vulnerability/Linux-kernel-multiple-vulnerabilities-dated-28-10-2025-48601

Patch

https://www.kernel.org/