CVE-2025-38483
Published: Jul 28, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: comedi: das16m1: Fix bit shift out of bounds When checking for a supported IRQ number, the following test is used: /* only irqs 2, 3, 4, 5, 6, 7, 10, 11, 12, 14, and 15 are valid */ if ((1 << it->options[1]) & 0xdcfc) { However, `it->options[i]` is an unchecked `int` value from userspace, so the shift amount could be negative or out of bounds. Fix the test by requiring `it->options[1]` to be within bounds before proceeding with the original test.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 729988507680b2ce934bce61d9ce0ea7b235914c - < 539bdff832adac9ea653859fa0b6bc62e743329caffected 729988507680b2ce934bce61d9ce0ea7b235914c - < d1291c69f46d6572b2cf75960dd8975d7ab2176baffected 729988507680b2ce934bce61d9ce0ea7b235914c - < b3c95fa508e5dc3da60520eea92a5241095ceef1affected 729988507680b2ce934bce61d9ce0ea7b235914c - < 65c03e6fc524eb2868abedffd8a4613d78abc288affected 729988507680b2ce934bce61d9ce0ea7b235914c - < adb7df8a8f9d788423e161b779764527dd3ec2d0+3 more versions |
Linux | Linux | affected 3.14unaffected 0 - < 3.14unaffected 5.4.297 - <= 5.4.*unaffected 5.10.241 - <= 5.10.*unaffected 5.15.190 - <= 5.15.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now