VDB

CVE-2025-39822

CVE-2025-39822 PUBLISHED CVSS 5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: io_uring/kbuf: fix signedness in this_len calculation When importing and using buffers, buf->len is considered unsigned. However, buf->len is converted to signed int when committing. This can lead to unexpected behavior if the buffer is large enough to be interpreted as a negative value. Make min_t calculation unsigned.

EPSS 0.03% · 8.0th percentile

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.03%
8.0th percentile

Affected Products

VendorProductVersions
linuxlinux_kernel6.15, 6.12, 6.17
LinuxLinuxcf9536e550dd243a1681fdbf804221527da20a80, c4dbca5be33c6203d2f611dbd7502f887e4cd954, 6.15

Timeline

  • Jan 21, 1970 Security Advisory
  • Sep 16, 2025 CVE Published
  • Sep 17, 2025 EPSS Score
  • Sep 24, 2025 EPSS Score
  • Oct 1, 2025 EPSS Score
  • Oct 4, 2025 Coalition ESS Score
  • Oct 6, 2025 Coalition ESS Score
  • Oct 8, 2025 EPSS Score
  • Oct 15, 2025 EPSS Score
  • Oct 19, 2025 Coalition ESS Score
  • Oct 22, 2025 EPSS Score
  • Oct 29, 2025 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›