CVE-2025-39818Out-of-bounds Write in Linux

CWE-787Out-of-bounds WriteCWE-763Release of Invalid Pointer or Reference15 documents7 sources
Severity
7.8HIGHNVD
OSV3.2
EPSS
0.0%
top 97.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedSep 16
Latest updateDec 15

Description

In the Linux kernel, the following vulnerability has been resolved: HID: intel-thc-hid: intel-thc: Fix incorrect pointer arithmetic in I2C regs save Improper use of secondary pointer (&dev->i2c_subip_regs) caused kernel crash and out-of-bounds error: BUG: KASAN: slab-out-of-bounds in _regmap_bulk_read+0x449/0x510 Write of size 4 at addr ffff888136005dc0 by task kworker/u33:5/5107 CPU: 3 UID: 0 PID: 5107 Comm: kworker/u33:5 Not tainted 6.16.0+ #3 PREEMPT(voluntary) Workqueue: async async_run_

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages4 packages

NVDlinux/linux_kernel6.146.16.5+1
Debianlinux/linux_kernel< 6.16.5-1
CVEListV5linux/linux4228966def884c6e34b85cdc7118c5d013e1718f78d4cf0466c79452e47aa6f720afbde63e709ccc+2
debiandebian/linux< linux 6.16.5-1 (forky)

Patches

Patch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

7
OSV
linux-azure, linux-azure-6.14 vulnerabilities2025-12-15
OSV
linux-gcp-6.14, linux-raspi vulnerabilities2025-12-04
OSV
linux-aws-6.14, linux-oracle-6.14 vulnerabilities2025-11-26
OSV
linux, linux-aws, linux-gcp, linux-hwe-6.14, linux-oracle, linux-realtime vulnerabilities2025-11-21
OSV
linux-realtime-6.14 vulnerabilities2025-11-21

📋Vendor Advisories

6
Ubuntu
Linux kernel (Azure) vulnerabilities2025-12-15
Ubuntu
Linux kernel vulnerabilities2025-12-04
Ubuntu
Linux kernel vulnerabilities2025-11-26
Ubuntu
Linux kernel (Real-time) vulnerabilities2025-11-21
Red Hat
kernel: HID: intel-thc-hid: intel-thc: Fix incorrect pointer arithmetic in I2C regs save2025-09-16

💬Community

1
Bugzilla
CVE-2025-39818 kernel: HID: intel-thc-hid: intel-thc: Fix incorrect pointer arithmetic in I2C regs save2025-09-16
CVE-2025-39818 — Out-of-bounds Write in Linux | cvebase