CVE-2025-38200
Vulnerability Summary
Timeline
Description
In the Linux kernel, the following vulnerability has been resolved: i40e: fix MMIO write access to an invalid page in i40e_clear_hw When the device sends a specific input, an integer underflow can occur, leading to MMIO write access to an invalid page. Prevent the integer underflow by changing the type of related variables.
CVSS Metrics
- v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Trends
Current EPSS score: 0.07%• Percentile: 21%
Techniques & Countermeasures
- CWE-191•Integer Underflow (Wrap or Wraparound)
The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.
Affected Systems
- debian•debian_linux
11.0
- linux•linux
≥ 1bff652941c4d94f97610c9a30473aad6f5b2fff, < 872607632c658d3739e4e7889e4f3c419ae2c193 | ≥ 1bff652941c4d94f97610c9a30473aad6f5b2fff, < 5e75c9082987479e647c75ec8fdf18fa68263c42 | ≥ 1bff652941c4d94f97610c9a30473aad6f5b2fff, < fecb2fc3fc10c95724407cc45ea35af4a65cdde2 | ≥ 1bff652941c4d94f97610c9a30473aad6f5b2fff, < d88a1e8f024ba26e19350958fecbf771a9960352 | ≥ 1bff652941c4d94f97610c9a30473aad6f5b2fff, < 8cde755f56163281ec2c46b4ae8b61f532758a6f | ≥ 1bff652941c4d94f97610c9a30473aad6f5b2fff, < 3502dd42f178dae9d54696013386bb52b4f2e655 | ≥ 1bff652941c4d94f97610c9a30473aad6f5b2fff, < 2a1f4f2e36442a9bdf771acf6ee86f3cf876e5ca | ≥ 1bff652941c4d94f97610c9a30473aad6f5b2fff, < 015bac5daca978448f2671478c553ce1f300c21e | 3.12
- linux•linux_kernel
≥ 3.12, < 5.4.295 | ≥ 5.5, < 5.10.239 | ≥ 5.11, < 5.15.186 | ≥ 5.16, < 6.1.142 | ≥ 6.2, < 6.6.95 | ≥ 6.7, < 6.12.35 | ≥ 6.13, < 6.15.4
References (10)
- https://git.kernel.org/stable/c/872607632c658d3739e4e7889e4f3c419ae2c193
- https://git.kernel.org/stable/c/5e75c9082987479e647c75ec8fdf18fa68263c42
- https://git.kernel.org/stable/c/fecb2fc3fc10c95724407cc45ea35af4a65cdde2
- https://git.kernel.org/stable/c/d88a1e8f024ba26e19350958fecbf771a9960352
- https://git.kernel.org/stable/c/8cde755f56163281ec2c46b4ae8b61f532758a6f
- https://git.kernel.org/stable/c/3502dd42f178dae9d54696013386bb52b4f2e655
- https://git.kernel.org/stable/c/2a1f4f2e36442a9bdf771acf6ee86f3cf876e5ca
- https://git.kernel.org/stable/c/015bac5daca978448f2671478c553ce1f300c21e
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html