VDB
CVE-2025-39822
CVE-2025-39822
PUBLISHED
CVSS 5.5 MEDIUM
In the Linux kernel, the following vulnerability has been resolved: io_uring/kbuf: fix signedness in this_len calculation When importing and using buffers, buf->len is considered unsigned. However, buf->len is converted to signed int when committing. This can lead to unexpected behavior if the buffer is large enough to be interpreted as a negative value. Make min_t calculation unsigned.
EPSS 0.03% · 8.0th percentile
Risk Scores
CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.03%
8.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| linux | linux_kernel | 6.15, 6.12, 6.17 |
| Linux | Linux | cf9536e550dd243a1681fdbf804221527da20a80, c4dbca5be33c6203d2f611dbd7502f887e4cd954, 6.15 |
Timeline
- Jan 21, 1970 Security Advisory
- Sep 16, 2025 CVE Published
- Sep 17, 2025 EPSS Score
- Sep 24, 2025 EPSS Score
- Oct 1, 2025 EPSS Score
- Oct 4, 2025 Coalition ESS Score
- Oct 6, 2025 Coalition ESS Score
- Oct 8, 2025 EPSS Score
- Oct 15, 2025 EPSS Score
- Oct 19, 2025 Coalition ESS Score
- Oct 22, 2025 EPSS Score
- Oct 29, 2025 EPSS Score
References
- https://git.kernel.org/stable/c/f4f411c068402c370c4f9a9d4950a97af97bbbb1 url
- https://git.kernel.org/stable/c/c64eff368ac676e8540344d27a3de47e0ad90d21 url
- https://nvd.nist.gov/vuln/detail/CVE-2025-39822 advisory
- https://www.suse.com/support/update/announcement/2025/suse-su-20254506-1 advisory
- https://www.suse.com/support/update/announcement/2025/suse-su-20254517-1 advisory
- https://www.suse.com/support/update/announcement/2025/suse-su-20254507-1 advisory
- https://www.suse.com/support/update/announcement/2025/suse-su-20254515-1 advisory
- https://www.suse.com/support/update/announcement/2025/suse-su-20254505-1 advisory
- https://www.suse.com/support/update/announcement/2025/suse-su-20254516-1 advisory
- https://www.suse.com/support/update/announcement/2025/suse-su-20254521-1 advisory
- https://www.suse.com/support/update/announcement/2025/suse-su-20254393-1 advisory
- https://www.suse.com/support/update/announcement/2025/suse-su-20254422-1 advisory
- https://www.suse.com/support/update/announcement/2026/suse-su-202620015-1 advisory
- https://www.suse.com/support/update/announcement/2026/suse-su-20260090-1 advisory
- https://www.suse.com/support/update/announcement/2026/suse-su-202620039-1 advisory
- https://www.suse.com/support/update/announcement/2026/suse-su-202620059-1 advisory
- https://www.suse.com/support/update/announcement/2026/suse-su-202620012-1 advisory
- https://www.suse.com/support/update/announcement/2026/suse-su-202620021-1 advisory
- https://www.suse.com/support/update/announcement/2026/suse-su-20260107-1 advisory