CVE-2025-40304
Published: Dec 8, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds Add bounds checking to prevent writes past framebuffer boundaries when rendering text near screen edges. Return early if the Y position is off-screen and clip image height to screen boundary. Break from the rendering loop if the X position is off-screen. When clipping image width to fit the screen, update the character count to match the clipped width to prevent buffer size mismatches. Without the character count update, bit_putcs_aligned and bit_putcs_unaligned receive mismatched parameters where the buffer is allocated for the clipped width but cnt reflects the original larger count, causing out-of-bounds writes.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 996bfaa7372d6718b6d860bdf78f6618e850c702affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < f0982400648a3e00580253e0c48e991f34d2684caffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 1943b69e87b0ab35032d47de0a7fca9a3d1d6fc1affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < ebc0730b490c7f27340b1222e01dd106e820320daffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 86df8ade88d290725554cefd03101ecd0fbd3752+3 more versions |
Linux | Linux | affected 2.6.12unaffected 0 - < 2.6.12unaffected 5.4.302 - <= 5.4.*unaffected 5.10.247 - <= 5.10.*unaffected 5.15.197 - <= 5.15.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now