CNNVD-202512-4669 Information

CNNVD ID

CNNVD-202512-4669

Related CVE

CVE-2023-54031

• CNNVD Published: 2025-12-24

Description (Chinese)

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于vdpa缺少队列索引属性的策略验证，可能导致越界读取。

Description (English)

Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. Linux Kernel had a security loophole, which stemmed from the lack of strategy validation of Vdpa ’ s Queue Index properties, which could lead to cross-border reading.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Linux

Published

2025-12-24

Last Modified

2026-02-24

References

https://git.kernel.org/stable/c/b3003e1b54e057f5f3124e437b80c3bef26ed3fe https://git.kernel.org/stable/c/ccb533b7070aeeb65c66ea5d590e9c62421dcd61 https://git.kernel.org/stable/c/8ad9bc25cbdcec72e7ca43dd8281decb69ea9a70 https://vigilance.fr/vulnerability/Linux-kernel-multiple-vulnerabilities-dated-24-12-2025-49195

Patch

https://www.kernel.org/