CNNVD-202601-2439 Information

CNNVD ID

CNNVD-202601-2439

Related CVE

CVE-2025-71116

• CNNVD Published: 2026-01-14

Description (Chinese)

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于decode_pool函数对损坏的osdmap缺乏足够弹性，可能导致越界读取。

Description (English)

Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. There is a security loophole in Linux Kernel, which stems from the lack of sufficient flexibility of the decode pol function for damaged osdmap, which may lead to cross-border reading.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Linux

Published

2026-01-14

Last Modified

2026-02-24

References

https://git.kernel.org/stable/c/2acb8517429ab42146c6c0ac1daed1f03d2fd125 https://git.kernel.org/stable/c/5d0d8c292531fe356c4e94dcfdf7d7212aca9957 https://git.kernel.org/stable/c/8c738512714e8c0aa18f8a10c072d5b01c83db39 https://git.kernel.org/stable/c/c82e39ff67353a5a6cbc07b786b8690bd2c45aaa https://git.kernel.org/stable/c/e927ab132b87ba3f076705fc2684d94b24201ed1

Patch

https://www.kernel.org/