CVE-2025-39787
BaseFortify
Publication date: 2025-09-11
Last updated on: 2025-11-03
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | kernel | 5.10.244-1 |
| qcom | mdt_loader | * |
| linux | kernel | 6.1.153-1 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in the Linux kernel involves the MDT loader component used in the Qualcomm SoC subsystem. The issue is that when the MDT loader processes ELF firmware headers, it may read beyond the end of the ELF header if the firmware buffer size and header entry sizes are not properly validated. This can lead to out-of-bounds reads because the ELF header is sanitized only when used in remoteproc, but not necessarily for other clients. The fix ensures validation of the firmware buffer size and ELF header entry sizes to prevent reading past the end of the header.
How can this vulnerability impact me? :
This vulnerability can lead to out-of-bounds memory reads when processing firmware ELF headers, which may cause system instability, crashes, or potentially expose sensitive information from memory. It could also be exploited by an attacker to cause denial of service or to gain unauthorized access to memory contents.