CVE-2025-38702

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-38702
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38702.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-38702
Downstream
Related
Published
2025-09-04T15:32:53.990Z
Modified
2026-03-20T12:42:58.775837Z
Summary
fbdev: fix potential buffer overflow in do_register_framebuffer()
Details

In the Linux kernel, the following vulnerability has been resolved:

fbdev: fix potential buffer overflow in doregisterframebuffer()

The current implementation may lead to buffer overflow when: 1. Unregistration creates NULL gaps in registeredfb[] 2. All array slots become occupied despite numregisteredfb < FBMAX 3. The registration loop exceeds array bounds

Add boundary check to prevent registeredfb[FBMAX] access.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38702.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Fixed
5c3f5a25c62230b7965804ce7a2e9305c3ca3961
Fixed
cbe740de32bb0fb7a5213731ff5f26ea6718fca3
Fixed
806f85bdd3a60187c21437fc51baace11f659f35
Fixed
2828a433c7d7a05b6f27c8148502095101dd0b09
Fixed
248b2aab9b2af5ecf89d9d7955a2ff20c4b4a399
Fixed
523b84dc7ccea9c4d79126d6ed1cf9033cf83b05

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38702.json"