U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

CVE-2025-39710 Detail

Description

In the Linux kernel, the following vulnerability has been resolved: media: venus: Add a check for packet size after reading from shared memory Add a check to ensure that the packet size does not exceed the number of available words after reading the packet header from shared memory. This ensures that the size provided by the firmware is safe to process and prevent potential out-of-bounds memory access.


Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.
CVSS 4.0 Severity and Vector Strings:

NIST CVSS score
NIST: NVD
N/A
NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

URL Source(s) Tag(s)
https://git.kernel.org/stable/c/0520c89f6280d2b60ab537d5743601185ee7d8ab kernel.org
https://git.kernel.org/stable/c/2d8cea8310a245730816a1fd0c9fa4a5a3bdc68c kernel.org
https://git.kernel.org/stable/c/49befc830daa743e051a65468c05c2ff9e8580e6 kernel.org
https://git.kernel.org/stable/c/7638bae4539dcebc3f68fda74ac35d73618ec440 kernel.org
https://git.kernel.org/stable/c/ba567c2e52fbcf0e20502746bdaa79e911c2e8cf kernel.org
https://git.kernel.org/stable/c/ef09b96665f16f3f0bac4e111160e6f24f1f8791 kernel.org
https://git.kernel.org/stable/c/f0cbd9386f974d310a0d20a02e4a1323e95ea654 kernel.org
https://git.kernel.org/stable/c/f5b7a943055a4a106d40a03bacd940e28cc1955f kernel.org

Weakness Enumeration

CWE-ID CWE Name Source

Change History

1 change records found show changes

Quick Info

CVE Dictionary Entry:
CVE-2025-39710
NVD Published Date:
09/05/2025
NVD Last Modified:
09/05/2025
Source:
kernel.org