4 matches found
UBUNTU-CVE-2025-68237
In the Linux kernel, the following vulnerability has been resolved: mtdchar: fix integer overflow in read/write ioctls The "req.start" and "req.len" variables are u64 values that come from the user at the start of the function. We mask away the high 32 bits of "req.len" so that's capped at U32MAX...
CVE-2025-68237
CVE-2025-68237 : In the Linux kernel mtdchar read/write ioctls, user-supplied req.start (u64) can overflow when combined with req.len (masked to 32 bits), enabling an integer overflow. The fix uses check_add_overflow() to guard the addition. The advisory does not specify exploitation details or a...
CVE-2025-68237 mtdchar: fix integer overflow in read/write ioctls
In the Linux kernel, the following vulnerability has been resolved: mtdchar: fix integer overflow in read/write ioctls The "req.start" and "req.len" variables are u64 values that come from the user at the start of the function. We mask away the high 32 bits of "req.len" so that's capped at U32MAX...
PT-2025-51650
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An integer overflow issue exists in the mtdchar driver related to read/write ioctls. The req.start and req.len variables, received from the user, can cause an integer overflow during...