CVE-2025-38715
Published: Sep 4, 2025
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: hfs: fix slab-out-of-bounds in hfs_bnode_read() This patch introduces is_bnode_offset_valid() method that checks the requested offset value. Also, it introduces check_and_correct_requested_length() method that checks and correct the requested length (if it is necessary). These methods are used in hfs_bnode_read(), hfs_bnode_write(), hfs_bnode_clear(), hfs_bnode_copy(), and hfs_bnode_move() with the goal to prevent the access out of allocated memory and triggering the crash.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < e7d2dc2421e821e4045775e6dc226378328de6f6affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 67ecc81f6492275c9c54280532f558483c99c90eaffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < a1a60e79502279f996e55052f50cc14919020475affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < fe2891a9c43ab87d1a210d61e6438ca6936e2f62affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 384a66b89f9540a9a8cb0f48807697dfabaece4c+4 more versions |
Linux | Linux | affected 2.6.12unaffected 0 - < 2.6.12unaffected 5.4.297 - <= 5.4.*unaffected 5.10.241 - <= 5.10.*unaffected 5.15.190 - <= 5.15.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now