PT-2025-20339 · Linux+8 · Linux Kernel+8
Published
2025-05-08
·
Updated
2026-04-20
·
CVE-2025-37810
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
A vulnerability in the Linux kernel has been resolved. The issue is related to the USB gadget functionality, specifically in the dwc3 driver. The problem occurs when the event count read from the DWC3 GEVNTCOUNT register exceeds the event buffer length, leading to an out-of-bounds access when copying the event using
memcpy(). This can cause a kernel crash, as indicated by the crash log. The vulnerability is mitigated by adding a check to ensure the event count does not exceed the event buffer length.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
RCE
Out of bounds Read
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Almalinux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu