ELS for OS
- CVEs
- Releases
- Projects
- Documentation
Live Patches
ELS for PHP
- CVEs
- Releases
- Projects
- Documentation
ELS for Python
- CVEs
- Releases
- Projects
- Documentation
ELS for Dotnet
- CVEs
- Releases
- Projects
- Documentation
ELS for Node.js
- CVEs
- Releases
- Projects
- Documentation

CVE-2025-39817

Updated: 2026-02-08 04:04:16.803935

Description:

In the Linux kernel, the following vulnerability has been resolved: efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare Observed on kernel 6.6 (present on master as well): BUG: KASAN: slab-out-of-bounds in memcmp+0x98/0xd0 Call trace: kasan_check_range+0xe8/0x190 __asan_loadN+0x1c/0x28 memcmp+0x98/0xd0 efivarfs_d_compare+0x68/0xd8 __d_lookup_rcu_op_compare+0x178/0x218 __d_lookup_rcu+0x1f8/0x228 d_alloc_parallel+0x150/0x648 lookup_open.isra.0+0x5f0/0x8d0 open_last_lookups+0x264/0x828 path_openat+0x130/0x3f8 do_filp_open+0x114/0x248 do_sys_openat2+0x340/0x3c0 __arm64_sys_openat+0x120/0x1a0 If dentry->d_name.len < EFI_VARIABLE_GUID_LEN , 'guid' can become negative, leadings to oob. The issue can be triggered by parallel lookups using invalid filename: T1 T2 lookup_open ->lookup simple_lookup d_add // invalid dentry is added to hash list lookup_open d_alloc_parallel __d_lookup_rcu __d_lookup_rcu_op_compare hlist_bl_for_each_entry_rcu // invalid dentry can be retrieved ->d_compare efivarfs_d_compare // oob Fix it by checking 'guid' before cmp.

Links	NIST	CIRCL	RHEL	Ubuntu

Severity

	Severity	Score
CVSS Version 2.x		0.0
CVSS Version 3.x	HIGH	7.1

Status

OS name	Project name	Version	Score	Severity	Status	Errata	Last updated
AlmaLinux 9.2 ESU	kernel	5.14.0	7.1	HIGH	Released	CLSA-2025:1764151168	2025-11-27 10:39:39
CentOS 7 ELS	kernel	3.10.0	7.1	HIGH	Released	CLSA-2026:1770040438	2026-02-10 13:43:45
CentOS 8.4 ELS	kernel	4.18.0	7.1	HIGH	Released	CLSA-2025:1763731262	2025-11-21 21:29:39
CentOS 8.5 ELS	kernel	4.18.0	7.1	HIGH	Released	CLSA-2025:1763734783	2025-11-21 21:29:40
CentOS Stream 8 ELS	kernel	4.18.0	7.1	HIGH	Needs Triage	CLSA-2025:1763722365	2026-01-16 17:28:22
CloudLinux 7 ELS	kernel	3.10.0	7.1	HIGH	Needs Triage		2026-01-19 08:28:05
Oracle Linux 7 ELS	kernel	3.10.0	7.1	HIGH	Released	CLSA-2026:1770028389	2026-02-02 15:37:14
Oracle Linux 7 ELS	kernel-uek	5.4.17	7.1	HIGH	Already Fixed		2026-02-03 16:14:46
RHEL 7 ELS	kernel	3.10.0	7.1	HIGH	Released	CLSA-2026:1770028764	2026-02-02 15:02:38
TuxCare 9.6 ESU	kernel	5.14.0	7.1	HIGH	Already Fixed		2025-12-15 12:04:35

Total: 14