Acknowledged
Created: Sep 4, 2025
Updated: Sep 8, 2025
Found In Version: 10.23.30.1
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:EOL][EOL]hfs: fix slab-out-of-bounds in hfs_bnode_read()[EOL][EOL]This patch introduces is_bnode_offset_valid() method that checks[EOL]the requested offset value. Also, it introduces[EOL]check_and_correct_requested_length() method that checks and[EOL]correct the requested length (if it is necessary). These methods[EOL]are used in hfs_bnode_read(), hfs_bnode_write(), hfs_bnode_clear(),[EOL]hfs_bnode_copy(), and hfs_bnode_move() with the goal to prevent[EOL]the access out of allocated memory and triggering the crash.
CREATE(Triage):(User=admin) [CVE-2025-38715 (https://nvd.nist.gov/vuln/detail/CVE-2025-38715)
