PT-2025-39126 · Linux+5 · Linux Kernel+5

Published

2025-08-30

·

Updated

2026-05-07

·

CVE-2025-39869

CVSS v3.1

7.1

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A memory allocation issue was identified within the EDMA driver in the Linux kernel. The queue priority map was allocated with an insufficient memory size during the edma setup from hw() function, specifically using sizeof(s8) instead of sizeof(*queue priority map). This resulted in out-of-bounds memory writes when accessing queue priority map[i][0] and queue priority map[i][1], leading to kernel crashes, such as "Oops - undefined instruction", on ARM platforms like BeagleBoard-X15. The issue was triggered by kernel hardening features on Clang.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Weakness Enumeration

CWE-125

Related Identifiers

BDU:2025-13896
CVE-2025-39869
DLA-4328-1
DLA-4404-1
ECHO-2F70-A2FF-882F
MGASA-2025-0309
MGASA-2025-0310
OPENSUSE-SU-2025:20081-1
SUSE-SU-2025:03600-1
SUSE-SU-2025:03614-1
SUSE-SU-2025:03615-1
SUSE-SU-2025:03628-1
SUSE-SU-2025:03634-1
SUSE-SU-2025:20851-1
SUSE-SU-2025:20861-1
SUSE-SU-2025:20870-1
SUSE-SU-2025:20898-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025:3716-1
SUSE-SU-2025:3751-1
SUSE-SU-2025:3761-1
SUSE-SU-2025:4057-1
SUSE-SU-2025:4132-1
SUSE-SU-2025:4141-1
USN-8033-1
USN-8033-2
USN-8033-3
USN-8033-4
USN-8033-5
USN-8033-6
USN-8033-7
USN-8033-8
USN-8034-1
USN-8034-2
USN-8095-1
USN-8095-2
USN-8095-3
USN-8095-4
USN-8095-5
USN-8100-1
USN-8125-1
USN-8126-1
USN-8141-1
USN-8163-1
USN-8163-2
USN-8165-1
USN-8243-1
USN-8261-1

Affected Products

Beagleboard-X15
Debian
Linuxmint
Linux Kernel
Suse
Ubuntu