CVE-2025-39989
x86/mce: use is_copy_from_user() to determine copy-from-user context
References
Notes
carnil> Introduced in 4c132d1d844a ("x86/futex: Remove .fixup usage"). Vulnerable
carnil> versions: 5.15.58 5.17.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.15-rc1) [1a15bb8303b6b104e78028b6c68f76a0d4562134]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
N/A "Fixed before branching point"
|
| 6.14-upstream-stable |
released (6.14.2) [0b8388e97ba6a8c033f9a8b5565af41af07f9345]
|
| 6.13-upstream-stable |
released (6.13.11) [449413da90a337f343cc5a73070cbd68e92e8a54]
|
| 6.12-upstream-stable |
released (6.12.23) [3e3d8169c0950a0b3cd5105f6403a78350dcac80]
|
| 6.6-upstream-stable |
released (6.6.89) [5724654a084f701dc64b08d34a0e800f22f0e6e4]
|
| 6.1-upstream-stable |
needed
|
| 5.10-upstream-stable |
N/A "Vulnerable code not present"
|
| sid |
released (6.12.25-1)
|
| 6.12-trixie-security |
N/A "Fixed before branching point"
|
| 6.1-bookworm-security |
needed
|
| 5.10-bullseye-security |
N/A "Vulnerable code not present"
|
