CVE-2025-5865

Name of the Vulnerable Software and Affected Versions RT-Thread version 5.1.0

Description A critical issue affects the sys select function of the Parameter Handler component in the file rt-thread/components/lwp/lwp syscall.c. The manipulation of the timeout argument leads to memory corruption. The vendor advises checking the timeout parameter to ensure it can be accessed correctly in kernel mode and used temporarily in kernel memory.

Recommendations For RT-Thread version 5.1.0, as a temporary workaround, consider implementing checks for the timeout parameter to prevent memory corruption until a patch is available. Restrict access to the sys select function to minimize the risk of exploitation. Avoid using the timeout argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.