VDB

DEBIAN-CVE-2025-39787

DEBIAN-CVE-2025-39787 PUBLISHED CVSS 5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: mdt_loader: Ensure we don't read past the ELF header When the MDT loader is used in remoteproc, the ELF header is sanitized beforehand, but that's not necessary the case for other clients. Validate the size of the firmware buffer to ensure that we don't read past the end as we iterate over the header. e_phentsize and e_shentsize are validated as well, to ensure that the assumptions about step size in the traversal are valid.

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Debian:11linux-6.16.1.140-1, 6.1.129-1, 6.1.128-1
Debian:13linux6.12.43-1~bpo12+1, 0, 6.12.38-1
Debian:11linux5.10.120-1, 5.10.113-1, 5.10.106-1
Debian:12linux6.1.38-1, 6.1.38-3, 0
Debian:14linux0, *, 6.12.43-1

Exploit Intelligence

Timeline

  • Sep 11, 2025 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›