CVE-2025-21738 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Linux
CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer30 documents7 sources
Severity
5.5MEDIUMNVD
OSV7.8OSV7.1OSV5.9
EPSS
0.0%
top 96.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedFeb 27
Latest updateSep 3
Description
In the Linux kernel, the following vulnerability has been resolved:
ata: libata-sff: Ensure that we cannot write outside the allocated buffer
reveliofuzzing reported that a SCSI_IOCTL_SEND_COMMAND ioctl with out_len
set to 0xd42, SCSI command set to ATA_16 PASS-THROUGH, ATA command set to
ATA_NOP, and protocol set to ATA_PROT_PIO, can cause ata_pio_sector() to
write outside the allocated buffer, overwriting random memory.
While a ATA device is supposed to abort a ATA_NOP command, there does s…
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6
Affected Packages9 packages
▶CVEListV5linux/linux5a5dbd18a7496ed403f6f54bb20c955c65482fa5 — a8f8cf87059ed1905c2a5c72f8b39a4f57b11b4c+5
Patches
🔴Vulnerability Details
14OSV▶
linux-aws-6.8, linux-gke, linux-gkeop, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-oracle, linux-oracle-6.8 vulnerabilities↗2025-07-22