CNNVD-202512-4147 Information
CNNVD ID
CNNVD-202512-4147
Related CVE
- CNNVD Published: 2025-12-23
Description (Chinese)
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于gs_usb_receive_bulk_callback中未检查数据长度,可能导致越界读取。
Description (English)
Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. Linux Kernel has a security loophole, which stems from the failure to check the length of the data in gs usb receive bulk callback, which may lead to cross-border reading.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Linux
Published
2025-12-23
Last Modified
2026-02-24
References
https://git.kernel.org/stable/c/395d988f93861101ec89d0dd9e3b876ae9392a5b https://git.kernel.org/stable/c/fb0c7c77a7ae3a2c3404b7d0173b8739a754b513 https://git.kernel.org/stable/c/ad55004a3cb5b41ef78aa6c09e7bc5a489ba652b https://git.kernel.org/stable/c/4ffac725154cf6a253f5e6aa0c8946232b6a0af5 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-68342