CVE-2025-40082 hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc()

🗓️ 28 Oct 2025 11:48:45Reported by GoogleType

osv

osv🔗 osv.dev👁 3 Views

Fixed slab memory error in hfsplus_unicode_to_ascii in the Linux kernel (CVE-2025-40082).

Reporter	Title	Published	Views	Family All 305
ATTACKERKB	CVE-2025-40082	28 Oct 202511:48	–	attackerkb
CBLMariner	CVE-2025-40082 affecting package kernel for versions less than 6.6.126.1-1	10 Mar 202622:56	–	cbl_mariner
Circl	CVE-2025-40082	28 Oct 202515:39	–	circl
CNNVD	Linux kernel 安全漏洞	28 Oct 202500:00	–	cnnvd
CVE	CVE-2025-40082	28 Oct 202511:48	–	cve
Cvelist	CVE-2025-40082 hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc()	28 Oct 202511:48	–	cvelist
Debian	[SECURITY] [DLA 4499-1] linux-6.1 security update	13 Mar 202613:14	–	debian
Debian	[SECURITY] [DSA 6141-1] linux security update	18 Feb 202615:42	–	debian
Debian	[SECURITY] [DSA 6163-1] linux security update	12 Mar 202621:31	–	debian
Debian CVE	CVE-2025-40082	28 Oct 202511:48	–	debiancve

Source	Link
git	www.git.kernel.org/stable/c/343fe375a8dd6ee51a193a1c233b999f5ea4d479
git	www.git.kernel.org/stable/c/5b5228964619b180f366940505b77255b1a03929
git	www.git.kernel.org/stable/c/782acde47e127c98a113726e2ff8024bd65c0454
git	www.git.kernel.org/stable/c/857aefc70d4ae3b9bf1ae67434d27d0f79f80c9e
git	www.git.kernel.org/stable/c/bea3e1d4467bcf292c8e54f080353d556d355e26
git	www.git.kernel.org/stable/c/c3db89ea1ed3d540eebe8f3c36e806fb75ee4a1e
github	www.github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40082.json
nvd	www.nvd.nist.gov/vuln/detail/CVE-2025-40082
git	www.git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

02 Apr 2026 12:48Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.17.1

EPSS0.00007

hfsplus unicode to ascii slab memory error kernel