CVE-2025-38483

HIGH EPSS 5.5%
Published Jul 28, 202511mo ago · Modified Jun 17, 20261w ago
7.1 CVSS 3.1
High
Find Similar
Published Jul 28, 2025 11mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: comedi: das16m1: Fix bit shift out of bounds When checking for a supported IRQ number, the following test is used: /* only irqs 2, 3, 4, 5, 6, 7, 10, 11, 12, 14, and 15 are valid */ if ((1 << it->options[1]) & 0xdcfc) { However, `it->options[i]` is an unchecked `int` value from userspace, so the shift amount could be negative or out of bounds. Fix the test by requiring `it->options[1]` to be within bounds before proceeding with the original test.

CVSS Details

Base Score
7.1
Exploitability
1.8
Impact
5.2
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
5.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-125 Out-of-bounds Read Memory Safety

Affected Products 14

VendorProductVersionRange
linuxlinux_kernel*≥3.14  –  <5.4.297
linuxlinux_kernel*≥5.5  –  <5.10.241
linuxlinux_kernel*≥5.11  –  <5.15.190
linuxlinux_kernel*≥5.16  –  <6.1.147
linuxlinux_kernel*≥6.2  –  <6.6.100
linuxlinux_kernel*≥6.7  –  <6.12.40
linuxlinux_kernel*≥6.13  –  <6.15.8
linuxlinux_kernel6.16any
linuxlinux_kernel6.16any
linuxlinux_kernel6.16any
linuxlinux_kernel6.16any
linuxlinux_kernel6.16any
linuxlinux_kernel6.16any
debiandebian_linux11.0any

References 10

  • git.kernel.org https://git.kernel.org/stable/c/076b13ee60eb01ed0d140ef261f95534562a3077
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/539bdff832adac9ea653859fa0b6bc62e743329c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/65c03e6fc524eb2868abedffd8a4613d78abc288
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/adb7df8a8f9d788423e161b779764527dd3ec2d0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b3c95fa508e5dc3da60520eea92a5241095ceef1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d1291c69f46d6572b2cf75960dd8975d7ab2176b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ed93c6f68a3be06e4e0c331c6e751f462dee3932
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f211572818ed5bec2b3f5d4e0719ef8699b3c269
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
    Third Party Advisory
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
    Third Party Advisory

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/076b13ee60eb01ed0d140ef261f95534562a3077
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/539bdff832adac9ea653859fa0b6bc62e743329c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/65c03e6fc524eb2868abedffd8a4613d78abc288
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/adb7df8a8f9d788423e161b779764527dd3ec2d0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b3c95fa508e5dc3da60520eea92a5241095ceef1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d1291c69f46d6572b2cf75960dd8975d7ab2176b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ed93c6f68a3be06e4e0c331c6e751f462dee3932
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f211572818ed5bec2b3f5d4e0719ef8699b3c269
    Patch