CVE-2025-38088

In the Linux kernel, the following vulnerability has been resolved:

powerpc/powernv/memtrace: Fix out of bounds issue in memtrace mmap

memtrace mmap issue has an out of bounds issue. This patch fixes the by
checking that the requested mapping region size should stay within the
allocated region size.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
UNKNOWN
---
LinuxCNA
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
not-affected
bullseye (security)
5.10.237-1
fixed
bookworm
vulnerable
bookworm (security)
vulnerable
trixie
vulnerable
sid
vulnerable
trixie (security)
vulnerable
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/620b77b23c41a6546e5548ffe2ea3ad71880dde4
https://git.kernel.org/stable/c/81260c41b518b6f32c701425f1427562fa92f293
https://git.kernel.org/stable/c/8635e325b85dfb9ddebdfaa6b5605d40d16cd147
https://git.kernel.org/stable/c/9c340b56d60545e4a159e41523dd8b23f81d3261
https://git.kernel.org/stable/c/bbd5a9ddb0f9750783a48a871c9e12c0b68c5f39
https://git.kernel.org/stable/c/cd097df4596f3a1e9d75eb8520162de1eb8485b2