CVE-2025-23159
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-23159
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-23159.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-23159
- Downstream
- Related
- Published
- 2025-05-01T12:55:44.695Z
- Modified
- 2025-11-28T02:34:03.693665Z
- Summary
- media: venus: hfi: add a check to handle OOB in sfr region
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
media: venus: hfi: add a check to handle OOB in sfr region
sfr->buf_size is in shared memory and can be modified by malicious user. OOB write is possible when the size is made higher than actual sfr data buffer. Cap the size to allocated size for such cases.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/23xxx/CVE-2025-23159.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/1b8fb257234e7d2d4b3f48af07c5aa5e11c71634
- https://git.kernel.org/stable/c/4dd109038d513b92d4d33524ffc89ba32e02ba48
- https://git.kernel.org/stable/c/4e95233af57715d81830fe82b408c633edff59f4
- https://git.kernel.org/stable/c/530f623f56a6680792499a8404083e17f8ec51f4
- https://git.kernel.org/stable/c/5af611c70fb889d46d2f654b8996746e59556750
- https://git.kernel.org/stable/c/8879397c0da5e5ec1515262995e82cdfd61b282a
- https://git.kernel.org/stable/c/a062d8de0be5525ec8c52f070acf7607ec8cbfe4
- https://git.kernel.org/stable/c/d78a8388a27b265fcb2b8d064f088168ac9356b0
- https://git.kernel.org/stable/c/f4b211714bcc70effa60c34d9fa613d182e3ef1e
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/23xxx/CVE-2025-23159.json
- https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html
- https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html
- https://nvd.nist.gov/vuln/detail/CVE-2025-23159
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd96d3f30c0f2f564f6922bf4ccdf4464992e31fbFixed4dd109038d513b92d4d33524ffc89ba32e02ba48Fixed8879397c0da5e5ec1515262995e82cdfd61b282aFixed1b8fb257234e7d2d4b3f48af07c5aa5e11c71634Fixed4e95233af57715d81830fe82b408c633edff59f4Fixed5af611c70fb889d46d2f654b8996746e59556750Fixed530f623f56a6680792499a8404083e17f8ec51f4Fixeda062d8de0be5525ec8c52f070acf7607ec8cbfe4Fixedd78a8388a27b265fcb2b8d064f088168ac9356b0Fixedf4b211714bcc70effa60c34d9fa613d182e3ef1e
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced4.13.0Fixed5.4.293
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.237
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.181
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.135
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.88
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.12.24
- Type
- ECOSYSTEM
- Events
-
Introduced6.13.0Fixed6.13.12
- Type
- ECOSYSTEM
- Events
-
Introduced6.14.0Fixed6.14.3