CVE-2025-39786 — Out-of-bounds Read in Linux

CWE-125 — Out-of-bounds Read5 documents5 sources

Severity

7.1HIGHNVD

EPSS

0.0%

top 94.20%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedSep 11

Description

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7173: fix channels index for syscalib_mode Fix the index used to look up the channel when accessing the syscalib_mode attribute. The address field is a 0-based index (same as scan_index) that it used to access the channel in the ad7173_channels array throughout the driver. The channels field, on the other hand, may not match the address field depending on the channel configuration specified in the device tree and c…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:HExploitability: 1.8 | Impact: 5.2

Affected Packages4 packages

▶NVDlinux/linux_kernel6.14 — 6.16.4

▶Debianlinux/linux_kernel< 6.16.5-1

▶CVEListV5linux/linux031bdc8aee01b7b298159eee541844d8bff4467d — 2def1a8691eb43654da0ae0d2fdb3722e20262a5+2

▶debiandebian/linux< linux 6.16.5-1 (forky)

Patches

Patch: git.kernel.org ↗Patch: git.kernel.org ↗

🔴Vulnerability Details

GHSA

GHSA-8rq5-mr4q-q969: In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7173: fix channels index for syscalib_mode Fix the index used to loo↗2025-09-11

▶

OSV

CVE-2025-39786: In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7173: fix channels index for syscalib_mode Fix the index used to look↗2025-09-11

▶

📋Vendor Advisories

Red Hat

kernel: iio: adc: ad7173: fix channels index for syscalib_mode↗2025-09-11

▶

Debian

CVE-2025-39786: linux - In the Linux kernel, the following vulnerability has been resolved: iio: adc: a...↗2025

▶