CNNVD-202601-863 Information
CNNVD ID
CNNVD-202601-863
Related CVE
- CNNVD Published: 2026-01-05
Description (Chinese)
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于starfive加密驱动中未正确处理sg_nents_for_len返回值,可能导致缓冲区溢出。
Description (English)
Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. Linux Kernel has a security loophole, which stems from the incorrect handling of sg nents for len ’ s return value in the Starfive encryption drive, which could result in a buffer zone spilling out.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Linux
Published
2026-01-05
Last Modified
2026-02-24
References
https://git.kernel.org/stable/c/0c3854d65cc4402cb8c52d4d773450a06efecab6 https://git.kernel.org/stable/c/1af5c973dd744e29fa22121f43e8646b7a7a71a7 https://git.kernel.org/stable/c/9b3f71cf02e04cfaa482155e3078707fe7f8aef4 https://git.kernel.org/stable/c/e9eb52037a529fbb307c290e9951a62dd728b03d https://access.redhat.com/security/cve/cve-2025-68763