Security Advisory

CVE-2025-39680

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-05 17:20:46

Last updated 2026-05-11 21:34:10

Assigner Linux

State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: i2c: rtl9300: Fix out-of-bounds bug in rtl9300_i2c_smbus_xfer The data->block[0] variable comes from user. Without proper check, the variable may be very large to cause an out-of-bounds bug. Fix this bug by checking the value of data->block[0] first. 1. commit 39244cc75482 ("i2c: ismt: Fix an out-of-bounds bug in ismt_access()") 2. commit 92fbb6d1296f ("i2c: xgene-slimpro: Fix out-of-bounds bug in xgene_slimpro_i2c_xfer()")

← Browse all CVEs View on cve.org ↗