CNNVD-202510-939 Information
CNNVD ID
CNNVD-202510-939
Related CVE
- CNNVD Published: 2025-10-07
Description (Chinese)
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于nfsd4_decode_compound函数未进行范围检查,可能导致越界读取。
Description (English)
Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. There is a security loophole in Linux Kernel, which stems from the fact that the nfsd4 decode compund function does not perform a scope check, which may result in cross-border reading.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Linux
Published
2025-10-07
Last Modified
2026-02-24
References
https://git.kernel.org/stable/c/ffcbcf087581ae68ddc0a21460f7ecd4315bdd0e https://git.kernel.org/stable/c/50827896c365e0f6c8b55ed56d444dafd87c92c5 https://git.kernel.org/stable/c/f352c41fa718482979e7e6b71b4da2b718e381cc https://git.kernel.org/stable/c/804d8e0a6e54427268790472781e03bc243f4ee3 https://git.kernel.org/stable/c/a64160124d5a078be0c380b1e8a0bad2d040d3a1 https://vigilance.fr/vulnerability/Linux-kernel-multiple-vulnerabilities-dated-07-10-2025-48407