CVE-2025-38483
published 2025-07-28CVE-2025-38483: In the Linux kernel, the following vulnerability has been resolved: comedi: das16m1: Fix bit shift out of bounds When checking for a supported IRQ number, the…
high7.1CVSS 3.1
AVLACLPRLUINSUCHINAH
In the Linux kernel, the following vulnerability has been resolved:
comedi: das16m1: Fix bit shift out of bounds
When checking for a supported IRQ number, the following test is used:
/* only irqs 2, 3, 4, 5, 6, 7, 10, 11, 12, 14, and 15 are valid */
if ((1 options[1]) & 0xdcfc) {
However, `it->options[i]` is an unchecked `int` value from userspace, so
the shift amount could be negative or out of bounds. Fix the test by
requiring `it->options[1]` to be within bounds before proceeding with
the original test.
Affected
37 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | linux | < linux 6.1.147-1 (bookworm) | linux 6.1.147-1 (bookworm) |
| debian | linux-6.1 | < linux 6.1.147-1 (bookworm) | linux 6.1.147-1 (bookworm) |
| linux | linux | — | — |
| linux | linux | >= 729988507680b2ce934bce61d9ce0ea7b235914c < 539bdff832adac9ea653859fa0b6bc62e743329c | 539bdff832adac9ea653859fa0b6bc62e743329c |
| linux | linux | >= 729988507680b2ce934bce61d9ce0ea7b235914c < d1291c69f46d6572b2cf75960dd8975d7ab2176b | d1291c69f46d6572b2cf75960dd8975d7ab2176b |
| linux | linux | >= 729988507680b2ce934bce61d9ce0ea7b235914c < b3c95fa508e5dc3da60520eea92a5241095ceef1 | b3c95fa508e5dc3da60520eea92a5241095ceef1 |
| linux | linux | >= 729988507680b2ce934bce61d9ce0ea7b235914c < 65c03e6fc524eb2868abedffd8a4613d78abc288 | 65c03e6fc524eb2868abedffd8a4613d78abc288 |
| linux | linux | >= 729988507680b2ce934bce61d9ce0ea7b235914c < adb7df8a8f9d788423e161b779764527dd3ec2d0 | adb7df8a8f9d788423e161b779764527dd3ec2d0 |
| linux | linux | >= 729988507680b2ce934bce61d9ce0ea7b235914c < 076b13ee60eb01ed0d140ef261f95534562a3077 | 076b13ee60eb01ed0d140ef261f95534562a3077 |
| linux | linux | >= 729988507680b2ce934bce61d9ce0ea7b235914c < f211572818ed5bec2b3f5d4e0719ef8699b3c269 | f211572818ed5bec2b3f5d4e0719ef8699b3c269 |
| linux | linux | >= 729988507680b2ce934bce61d9ce0ea7b235914c < ed93c6f68a3be06e4e0c331c6e751f462dee3932 | ed93c6f68a3be06e4e0c331c6e751f462dee3932 |
| linux | linux_kernel | — | — |
| linux | linux_kernel | >= 0 < 5.10.244-1 | 5.10.244-1 |
| linux | linux_kernel | >= 0 < 6.1.147-1 | 6.1.147-1 |
| linux | linux_kernel | >= 0 < 6.12.41-1 | 6.12.41-1 |
| linux | linux_kernel | >= 0 < 6.16.3-1 | 6.16.3-1 |
| linux | linux_kernel | >= 0 < 5.15.0-163.173 | 5.15.0-163.173 |
| linux | linux_kernel | >= 0 < 6.8.0-100.100 | 6.8.0-100.100 |
| linux | linux_kernel | >= 3.14 < 5.4.297 | 5.4.297 |
| linux | linux_kernel | >= 5.11 < 5.15.190 | 5.15.190 |
| linux | linux_kernel | >= 5.16 < 6.1.147 | 6.1.147 |
| linux | linux_kernel | >= 5.5 < 5.10.241 | 5.10.241 |
| linux | linux_kernel | >= 6.13 < 6.15.8 | 6.15.8 |
| linux | linux_kernel | >= 6.2 < 6.6.100 | 6.6.100 |
CVSS provenance
nvdv3.17.1HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
osv7.1HIGH