CVE-2025-36932

Name of the Vulnerable Software and Affected Versions versions prior to 2025-36932

Description A flaw exists in the tracepoint msg handler function within cpm/google/lib/tracepoint/tracepoint ipc.c. This issue is due to insufficient input validation, potentially leading to a memory overwrite. Successful exploitation of this could allow a local user to gain elevated privileges without requiring additional permissions or user interaction. The vulnerable component is the tracepoint msg handler function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.