CVE-2025-39869
Published: Sep 23, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: edma: Fix memory allocation size for queue_priority_map Fix a critical memory allocation bug in edma_setup_from_hw() where queue_priority_map was allocated with insufficient memory. The code declared queue_priority_map as s8 (*)[2] (pointer to array of 2 s8), but allocated memory using sizeof(s8) instead of the correct size. This caused out-of-bounds memory writes when accessing: queue_priority_map[i][0] = i; queue_priority_map[i][1] = i; The bug manifested as kernel crashes with "Oops - undefined instruction" on ARM platforms (BeagleBoard-X15) during EDMA driver probe, as the memory corruption triggered kernel hardening features on Clang. Change the allocation to use sizeof(*queue_priority_map) which automatically gets the correct size for the 2D array structure.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 2b6b3b7420190888793c49e97276e1e73bd7eaed - < 7d4de60d6db02d9b01d5890d5156b04fad65d07aaffected 2b6b3b7420190888793c49e97276e1e73bd7eaed - < d722de80ce037dccf6931e778f4a46499d51bdf9affected 2b6b3b7420190888793c49e97276e1e73bd7eaed - < 301a96cc4dc006c9a285913d301e681cfbf7edb6affected 2b6b3b7420190888793c49e97276e1e73bd7eaed - < 5e462fa0dfdb52b3983cf41532d3d4c7d63e2f93affected 2b6b3b7420190888793c49e97276e1e73bd7eaed - < 1baed10553fc8b388351d8fc803e3ae6f1a863bc+3 more versions |
Linux | Linux | affected 4.4unaffected 0 - < 4.4unaffected 5.4.300 - <= 5.4.*unaffected 5.10.245 - <= 5.10.*unaffected 5.15.194 - <= 5.15.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now