CVE-2025-38676
In the Linux kernel, the following vulnerability has been resolved:
iommu/amd: Avoid stack buffer overflow from kernel cmdline
While the kernel command line is considered trusted in most environments, avoid writing 1 byte past the end of "acpiid" if the "str" argument is maximum length.
| Software | From | Fixed in |
|---|---|---|
| linux / linux_kernel | 5.4.237 | 5.5 |
| linux / linux_kernel | 5.10.175 | 5.10.241 |
| linux / linux_kernel | 5.15.103 | 5.15.190 |
| linux / linux_kernel | 6.1.16 | 6.1.149 |
| linux / linux_kernel | 6.2.3 | 6.6.103 |
| linux / linux_kernel | 6.7 | 6.12.44 |
| linux / linux_kernel | 6.13 | 6.16.4 |
| linux / linux_kernel | 6.17-rc1 | 6.17-rc1.x |
| linux / linux_kernel | 6.17-rc2 | 6.17-rc2.x |
| debian / debian_linux | 11.0 | 11.0.x |
- https://git.kernel.org/stable/c/0ad8509b468fa1058f4f400a1829f29e4ccc4de8
- https://git.kernel.org/stable/c/4bdb0f78bddbfa77d3ab458a21dd9cec495d317a
- https://git.kernel.org/stable/c/736db11c86f03e717fc4bf771d05efdf10d23acb
- https://git.kernel.org/stable/c/8503d0fcb1086a7cfe26df67ca4bd9bd9e99bdec
- https://git.kernel.org/stable/c/8f80c633cba144f721d38d9380f23d23ab7db10e
- https://git.kernel.org/stable/c/9ff52d3af0ef286535749e14e3fe9eceb39a8349
- https://git.kernel.org/stable/c/a732502bf3bbe859613b6d7b2b0313b11f0474ac
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime