Acknowledged
Created: Aug 17, 2025
Updated: Aug 18, 2025
Found In Version: 10.23.30.1
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:EOL][EOL]comedi: aio_iiro_16: Fix bit shift out of bounds[EOL][EOL]When checking for a supported IRQ number, the following test is used:[EOL][EOL]\tif ((1 << it->options[1]) & 0xdcfc) {[EOL][EOL]However, `it->options[i]` is an unchecked `int` value from userspace, so[EOL]the shift amount could be negative or out of bounds. Fix the test by[EOL]requiring `it->options[1]` to be within bounds before proceeding with[EOL]the original test. Valid `it->options[1]` values that select the IRQ[EOL]will be in the range [1,15]. The value 0 explicitly disables the use of[EOL]interrupts.
CREATE(Triage):(User=pbi-cn) [CVE-2025-38529 (https://nvd.nist.gov/vuln/detail/CVE-2025-38529)
