Acknowledged
Created: Oct 29, 2025
Updated: Oct 30, 2025
Found In Version: 10.25.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 25
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]tee: fix register_shm_helper()[EOL][EOL]In register_shm_helper(), fix incorrect error handling for a call to[EOL]iov_iter_extract_pages(). A case is missing for when[EOL]iov_iter_extract_pages() only got some pages and return a number larger[EOL]than 0, but not the requested amount.[EOL][EOL]This fixes a possible NULL pointer dereference following a bad input from[EOL]ioctl(TEE_IOC_SHM_REGISTER) where parts of the buffer isn't mapped.
