DEBIAN-CVE-2025-39898

Advisory lineage Upstream: 1 Downstream: 2

Upstream

CVE-2025-39898

Downstream

DLA-4327-1 DLA-4328-1

Published: 01 Oct 2025, 08:15

Last modified:13 Oct 2025, 11:18

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

01 Oct 2025, 08:15

Published

Vulnerability first disclosed

13 Oct 2025, 11:18

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: e1000e: fix heap overflow in e1000_set_eeprom Fix a possible heap overflow in e1000_set_eeprom function by adding input validation for the requested length of the change in the EEPROM. In addition, change the variable type from int to size_t for better code practices and rearrange declarations to RCT.

Affected Systems

debian•linux
< 5.10.244-1 | < 6.1.153-1 | < 6.12.48-1 | < 6.16.6-1
debian•linux-6.1
< 6.1.153-1~deb11u1

References (1)

https://security-tracker.debian.org/tracker/CVE-2025-39898