Updated: 2026-02-27 03:53:17.77068
Description:
In the Linux kernel, the following vulnerability has been resolved: i2c: tegra: check msg length in SMBUS block read For SMBUS block read, do not continue to read if the message length passed from the device is '0' or greater than the maximum allowed bytes.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | 0.0 | |
| CVSS Version 3.x | HIGH | 7.8 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| AlmaLinux 9.2 ESU | kernel | 5.14.0 | 7.8 | HIGH | Released | CLSA-2026:1771239384 | 2026-02-16 15:58:18 | |
| CentOS 6 ELS | kernel | 2.6.32 | 7.8 | HIGH | Not Vulnerable | 2026-01-09 20:20:20 | Not affected: CVE-2025-38425 targets the NVIDIA Tegra I2C driver (drivers/i2c/busses/i2c-tegra.c)—... | |
| CentOS 7 ELS | kernel | 3.10.0 | 7.8 | HIGH | Not Vulnerable | 2025-12-29 07:22:17 | Not affected: CVE-2025-38425 targets the NVIDIA Tegra I2C controller driver (drivers/i2c/busses/i2c-... | |
| CentOS 8.4 ELS | kernel | 4.18.0 | 7.8 | HIGH | Not Vulnerable | 2025-12-29 07:22:19 | Not affected: CVE-2025-38425 only applies to the NVIDIA Tegra I2C bus driver (i2c-tegra, CONFIG_I2C_... | |
| CentOS 8.5 ELS | kernel | 4.18.0 | 7.8 | HIGH | Not Vulnerable | 2025-12-29 07:22:20 | Not affected: CVE-2025-38425 only applies to the NVIDIA Tegra I2C bus driver (i2c-tegra, CONFIG_I2C_... | |
| CentOS Stream 8 ELS | kernel | 4.18.0 | 7.8 | HIGH | Not Vulnerable | 2025-12-29 07:22:16 | Not affected: CVE-2025-38425 only applies to the NVIDIA Tegra I2C bus driver (i2c-tegra, CONFIG_I2C_... | |
| CloudLinux 7 ELS | kernel | 3.10.0 | 7.8 | HIGH | Not Vulnerable | 2026-02-07 20:39:34 | Not affected: CVE-2025-38425 targets the NVIDIA Tegra I2C controller driver (drivers/i2c/busses/i2c-... | |
| Oracle Linux 6 ELS | kernel | 2.6.32 | 7.8 | HIGH | Not Vulnerable | 2026-02-07 20:39:36 | Not affected: CVE-2025-38425 targets the NVIDIA Tegra I2C driver (drivers/i2c/busses/i2c-tegra.c)—... | |
| Oracle Linux 7 ELS | kernel | 3.10.0 | 7.8 | HIGH | Not Vulnerable | 2025-12-31 06:37:52 | Not affected: CVE-2025-38425 targets the NVIDIA Tegra I2C controller driver (drivers/i2c/busses/i2c-... | |
| Oracle Linux 7 ELS | kernel-uek | 5.4.17 | 7.8 | HIGH | Not Vulnerable | 2025-12-29 07:41:11 | Not affected: CVE-2025-38425 targets the NVIDIA Tegra I2C controller driver (drivers/i2c/busses/i2c-... |