ГлавнаяУязвимости → CVE-2025-38286
7.1высокая

CVE-2025-38286

→ есть в БДУ: BDU:2025-10311 (на русском)
Описание (на английском; русское — в БДУ выше)

In the Linux kernel, the following vulnerability has been resolved: pinctrl: at91: Fix possible out-of-boundary access at91_gpio_probe() doesn't check that given OF alias is not available or something went wrong when trying to get it. This might have consequences when accessing gpio_chips array with that value as an index. Note, that BUG() can be compiled out and hence won't actually perform the required checks.

Затрагиваемое ПО
Linux Linux kernelDebian Debian linux
CVSS
Балл7.1 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Источники
https://git.kernel.org/stable/c/264a5cf0c422e65c94447a1ebebfac7c92690670https://git.kernel.org/stable/c/288c39286f759314ee8fb3a80a858179b4f306dahttps://git.kernel.org/stable/c/2ecafe59668d2506a68459a9d169ebe41a147a41https://git.kernel.org/stable/c/762ef7d1e6eefad9896560bfcb9bcf7f1b6df9c1https://git.kernel.org/stable/c/db5665cbfd766db7d8cd0e5fd6e3c0b412916774https://git.kernel.org/stable/c/e02e12d6a7ab76c83849a4122785650dc7edef65https://git.kernel.org/stable/c/eb435bc4c74acbb286cec773deac13d117d3ef39https://git.kernel.org/stable/c/f1c1fdc41fbf7e308ced9c86f3f66345a3f6f478