CVE-2025-38530
Published: Aug 16, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: comedi: pcl812: Fix bit shift out of bounds When checking for a supported IRQ number, the following test is used: if ((1 << it->options[1]) & board->irq_bits) { However, `it->options[i]` is an unchecked `int` value from userspace, so the shift amount could be negative or out of bounds. Fix the test by requiring `it->options[1]` to be within bounds before proceeding with the original test. Valid `it->options[1]` values that select the IRQ will be in the range [1,15]. The value 0 explicitly disables the use of interrupts.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected fcdb427bc7cf5e9e5d7280cf09c08dec49b49432 - < 374d9b3eb4b08407997ef1fce96119d31e0c0bc4affected fcdb427bc7cf5e9e5d7280cf09c08dec49b49432 - < 0489c30d080f07cc7f09d04de723d8c2ccdb61efaffected fcdb427bc7cf5e9e5d7280cf09c08dec49b49432 - < 29ef03e5b84431171d6b77b822985b54bc44b793affected fcdb427bc7cf5e9e5d7280cf09c08dec49b49432 - < 5bfa301e1e59a9b1a7b62a800b54852337c97416affected fcdb427bc7cf5e9e5d7280cf09c08dec49b49432 - < 7e470d8efd10725b189ca8951973a8425932398a+3 more versions |
Linux | Linux | affected 2.6.30unaffected 0 - < 2.6.30unaffected 5.4.297 - <= 5.4.*unaffected 5.10.241 - <= 5.10.*unaffected 5.15.190 - <= 5.15.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now