CNNVD-202512-760 Information
CNNVD ID
CNNVD-202512-760
Related CVE
- CNNVD Published: 2025-12-06
Description (Chinese)
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于drm vmwgfx未验证命令头大小,可能导致缓冲区溢出。
Description (English)
Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. There is a security loophole in Linux Kernel, which stems from the fact that the head size of the drum vmwgfx has not been verified, which could lead to spills in the buffer zone.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Linux
Published
2025-12-06
Last Modified
2026-02-24
References
https://git.kernel.org/stable/c/b5df9e06eed3df6a4f5c6f8453013b0cabb927b4 https://git.kernel.org/stable/c/32b415a9dc2c212e809b7ebc2b14bc3fbda2b9af https://git.kernel.org/stable/c/e58559845021c3bad5e094219378b869157fad53 https://git.kernel.org/stable/c/54d458b244893e47bda52ec3943fdfbc8d7d068b https://git.kernel.org/stable/c/709e5c088f9c99a5cf2c1d1c6ce58f2cca7ab173 https://git.kernel.org/stable/c/f3f3a8eb3f0ba799fae057091d8c67cca12d6fa0 https://git.kernel.org/stable/c/5aea2cde03d4247cdcf53f9ab7d0747c9dca1cfc https://git.kernel.org/stable/c/a3abb54c27b2c393c44362399777ad2f6e1ff17e https://access.redhat.com/security/cve/cve-2025-40277 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-40277 https://vigilance.fr/vulnerability/Linux-kernel-multiple-vulnerabilities-dated-08-12-2025-49010