3 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-39928
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - i2c: rtl9300: ensure data length is within supported range Add an explicit check for the xfer length to 'rtl9300i2cconfigxfer' to ensure the data length isn't...
CVE-2025-39928
In the Linux kernel, the following vulnerability has been resolved: i2c: rtl9300: ensure data length is within supported range Add an explicit check for the xfer length to 'rtl9300i2cconfigxfer' to ensure the data length isn't within the supported range. In particular a data length of 0 is not...
CVE-2025-39928
CVE-2025-39928 affects the Linux kernel RTL9300 I2C driver. The vulnerability arises from not validating the transfer length in rtl9300_i2c_config_xfer, allowing a data length of 0 to underflow and be treated as 16 due to (len - 1) & 0xf, which can trigger a 16-byte write and potentially soft-bri...