PT-2025-6060 · Linux+7 · Linux Kernel+7

Mostafa Saleh

·

Published

2025-01-22

·

Updated

2026-04-20

·

CVE-2025-21687

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue concerns the Linux kernel, specifically the vfio/platform component, where the bounds of read/write syscalls are not properly checked. The count and offset variables are passed from user space without being validated, except that offset is capped at 40 bits. This limitation can be exploited to read or write beyond the device's boundaries.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Corruption

Buffer Overflow

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-19CWE-787CWE-119CWE-125

Related Identifiers

ALT-PU-2025-12647
ALT-PU-2025-3469
ALT-PU-2025-3514
ALT-PU-2025-5437
BDU:2025-01843
CVE-2025-21687
DLA-4075-1
DLA-4076-1
MGASA-2025-0078
MGASA-2025-0079
OESA-2025-1336
OESA-2025-1339
OESA-2025-1340
OESA-2025-2081
OESA-2025-2082
OPENSUSE-SU-2025_0847-1
OPENSUSE-SU-2025_0856-1
OPENSUSE-SU-2025_0955-1
SUSE-SU-2025:0784-1
SUSE-SU-2025:0847-1
SUSE-SU-2025:0856-1
SUSE-SU-2025:0955-1
SUSE-SU-2025:20190-1
SUSE-SU-2025:20192-1
SUSE-SU-2025:20260-1
SUSE-SU-2025:20270-1
SUSE-SU-2025_0847-1
SUSE-SU-2025_0856-1
SUSE-SU-2025_0955-1
USN-7387-1
USN-7387-2
USN-7387-3
USN-7388-1
USN-7389-1
USN-7390-1
USN-7391-1
USN-7392-1
USN-7392-2
USN-7392-3
USN-7392-4
USN-7393-1
USN-7401-1
USN-7407-1
USN-7413-1
USN-7421-1
USN-7458-1
USN-7459-1
USN-7459-2
USN-7463-1
USN-7539-1
USN-7540-1

Affected Products

Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu