AZL-70501

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-70501.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-70501

Upstream

CVE-2025-38426

Published

2025-07-25T15:15:27Z

Modified

2026-04-01T05:21:56.362883Z

Summary

CVE-2025-38426 affecting package kernel 5.15.200.1-1

Details

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: Add basic validation for RAS header

If RAS header read from EEPROM is corrupted, it could result in trying to allocate huge memory for reading the records. Add some validation to header fields.

References

https://nvd.nist.gov/vuln/detail/CVE-2025-38426

Affected packages

Azure Linux:2 / kernel

Package

Name: kernel
Purl: pkg:rpm/azure-linux/kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

5.15.200.1-1

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-70501.json"