CVE-2025-39684 comedi: Fix use of uninitialized memory in do_insn_ioctl() and do_insnlist_ioctl()

🗓️ 05 Sep 2025 17:20:50Reported by LinuxType

Fix uninitialized memory in do_insn_ioctl and do_insnlist_ioctl by zeroing unused buffer parts to prevent leaks.

Reporter	Title	Published	Views	Family All 187
AstraLinux	Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15	19 Jun 202611:10	–	astralinux
CBLMariner	CVE-2025-39684 affecting package kernel for versions less than 6.6.104.2-1	1 Oct 202519:21	–	cbl_mariner
Circl	CVE-2025-39684	3 Dec 202514:14	–	circl
CNNVD	Linux kernel 安全漏洞	5 Sep 202500:00	–	cnnvd
CVE	CVE-2025-39684	5 Sep 202517:20	–	cve
Debian	[SECURITY] [DLA 4328-1] linux-6.1 security update	13 Oct 202509:16	–	debian
Debian	[SECURITY] [DSA 6008-1] linux security update	22 Sep 202521:10	–	debian
Debian	[SECURITY] [DSA 6009-1] linux security update	22 Sep 202521:10	–	debian
Debian CVE	CVE-2025-39684	5 Sep 202517:20	–	debiancve
Tenable Nessus	Debian dla-4328 : linux-config-6.1 - security update	13 Oct 202500:00	–	nessus

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/comedi/comedi_fops.c"
    ],
    "versions": [
      {
        "version": "ed9eccbe8970f6eedc1b978c157caf1251a896d4",
        "lessThan": "868a1b68dcd9f2805bb86aa64862402f785d8c4a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ed9eccbe8970f6eedc1b978c157caf1251a896d4",
        "lessThan": "ff4a7c18799c7fe999fa56c5cf276e13866b8c1a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ed9eccbe8970f6eedc1b978c157caf1251a896d4",
        "lessThan": "d84f6e77ebe3359394df32ecd97e0d76a25283dc",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ed9eccbe8970f6eedc1b978c157caf1251a896d4",
        "lessThan": "f3b0c9ec54736f3b8118f93a473d22e11ee65743",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ed9eccbe8970f6eedc1b978c157caf1251a896d4",
        "lessThan": "aecf0d557ddd95ce68193a5ee1dc4c87415ff08a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ed9eccbe8970f6eedc1b978c157caf1251a896d4",
        "lessThan": "3cd212e895ca2d58963fdc6422502b10dd3966bb",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/comedi/comedi_fops.c"
    ],
    "versions": [
      {
        "version": "2.6.29",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "2.6.29",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.190",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.149",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.103",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.44",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.16.4",
        "lessThanOrEqual": "6.16.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.17",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/ff4a7c18799c7fe999fa56c5cf276e13866b8c1a
git	www.git.kernel.org/stable/c/d84f6e77ebe3359394df32ecd97e0d76a25283dc
git	www.git.kernel.org/stable/c/3cd212e895ca2d58963fdc6422502b10dd3966bb
git	www.git.kernel.org/stable/c/aecf0d557ddd95ce68193a5ee1dc4c87415ff08a
git	www.git.kernel.org/stable/c/868a1b68dcd9f2805bb86aa64862402f785d8c4a
git	www.git.kernel.org/stable/c/f3b0c9ec54736f3b8118f93a473d22e11ee65743

11 May 2026 21:34Current

EPSS0.00162