PT-2025-35987 · Linux +1 · Linux Kernel +1
Published
2025-09-04
·
Updated
2025-09-04
·
CVE-2025-38714
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions:
Linux kernel versions prior to 6.16.0-rc3
Description:
A slab-out-of-bounds issue was identified in the `hfsplus bnode read()` function within the Linux kernel. This issue can occur during the reading of data, potentially leading to a system crash. The vulnerability is triggered when the `hfsplus bnode read()` method is called, as observed in a kernel bug report.
Recommendations:
Update to a version of the Linux kernel newer than 6.16.0-rc3.
Related Identifiers
CVE-2025-38714
Affected Products
Debian
Linux Kernel
References · 15
- https://security-tracker.debian.org/tracker/CVE-2025-38714 · Vendor Advisory
- https://security-tracker.debian.org/tracker/source-package/linux · Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2025-38714 · Security Note
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-38714 · Security Note
- https://git.kernel.org/stable/c/7fa4cef8ea13b37811287ef60674c5fd1dd02ee6 · Note
- https://git.kernel.org/stable/c/a2abd574d2fe22b8464cf6df5abb6f24d809eac0 · Note
- https://git.kernel.org/stable/c/032f7ed6717a4cd3714f9801be39fdfc7f1c7644 · Note
- https://twitter.com/CVEnew/status/1963637914505810115 · Twitter Post
- https://git.kernel.org/stable/c/475d770c19929082aab43337e6c077d0e2043df3 · Note
- https://packages.debian.org/src:linux · Note
- https://git.kernel.org/stable/c/c80aa2aaaa5e69d5219c6af8ef7e754114bd08d2 · Note
- https://git.kernel.org/stable/c/5ab59229bef6063edf3a6fc2e3e3fd7cd2181b29 · Note
- https://git.kernel.org/stable/c/8583d067ae22b7f32ce5277ca5543ac8bf86a3e5 · Note
- https://git.kernel.org/stable/c/291b7f2538920aa229500dbdd6c5f0927a51bc8b · Note
- https://git.kernel.org/stable/c/ffee8a7bed0fbfe29da239a922b59c5db897c613 · Note