CVE-2025-38068
Published: Jun 18, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: crypto: lzo - Fix compression buffer overrun Unlike the decompression code, the compression code in LZO never checked for output overruns. It instead assumes that the caller always provides enough buffer space, disregarding the buffer length provided by the caller. Add a safe compression interface that checks for the end of buffer before each write. Use the safe interface in crypto/lzo.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 64c70b1cf43de158282bc1675918d503e5b15cc1 - < 4b173bb2c4665c23f8fcf5241c7b06dfa6b5b111affected 64c70b1cf43de158282bc1675918d503e5b15cc1 - < a98bd864e16f91c70b2469adf013d713d04d1d13affected 64c70b1cf43de158282bc1675918d503e5b15cc1 - < 0acdc4d6e679ba31d01e3e7e2e4124b76d6d8e2aaffected 64c70b1cf43de158282bc1675918d503e5b15cc1 - < 7caad075acb634a74911830d6386c50ea12566cdaffected 64c70b1cf43de158282bc1675918d503e5b15cc1 - < 167373d77c70c2b558aae3e327b115249bb2652c+1 more versions |
Linux | Linux | affected 2.6.23unaffected 0 - < 2.6.23unaffected 5.15.185 - <= 5.15.*unaffected 6.1.141 - <= 6.1.*unaffected 6.6.93 - <= 6.6.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now