CVE-2025-40193
xtensa: simdisk: add input size check in proc_write_simdisk
References
Notes
carnil> Introduced in b6c7e873daf7 ("xtensa: ISS: add host file-based simulated disk")
carnil> 16e5c1fc3604 ("convert a bunch of open-coded instances of memdup_user_nul()").
carnil> Vulnerable versions: 3.9.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.18-rc1) [5d5f08fd0cd970184376bee07d59f635c8403f63]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
released (6.17.4) [a0c2c36d864ef3676b05cfd8c58b72ee3214cb1a]
|
| 6.12-upstream-stable |
released (6.12.54) [d381de7fd4cdc928ede96987dc64b133e6480dd6]
|
| 6.6-upstream-stable |
released (6.6.113) [151bd88859474cdaccc1e4c8b21fbf72dbba2ab4]
|
| 6.1-upstream-stable |
released (6.1.157) [f40405ccfb87b71175f2d5d004c0b8a0aebcc2cf]
|
| 5.10-upstream-stable |
needed
|
| sid |
released (6.17.6-1)
|
| 6.12-trixie-security |
released (6.12.57-1)
|
| 6.1-bookworm-security |
released (6.1.158-1)
|
| 5.10-bullseye-security |
needed
|
