CVE-2025-38667

Published: Aug 22, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: iio: fix potential out-of-bound write The buffer is set to 20 characters. If a caller write more characters, count is truncated to the max available space in "simple_write_to_buffer". To protect from OoB access, check that the input size fit into buffer and add a zero terminator after copy to the end of the copied data.

Vendor	Product	Versions
Linux	Linux	affected `6d5dd486c715908b5a6ed02315a15ff044a91025 - < 81a635b6eccd6fc889f6d07ab9583b705f739ce1` affected `6d5dd486c715908b5a6ed02315a15ff044a91025 - < 16285a0931869baa618b1f5d304e1e9d090470a8`
Linux	Linux	affected `6.15` unaffected `0 - < 6.15` unaffected `6.15.9 - <= 6.15.` unaffected `6.16 - <= `

References

https://git.kernel.org/stable/c/81a635b6eccd6fc889f6d07ab9583b705f739ce1

https://git.kernel.org/stable/c/16285a0931869baa618b1f5d304e1e9d090470a8

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-38667

Description

Affected Products

References