{"id":"CVE-2025-38088","summary":"powerpc/powernv/memtrace: Fix out of bounds issue in memtrace mmap","details":"In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/powernv/memtrace: Fix out of bounds issue in memtrace mmap\n\nmemtrace mmap issue has an out of bounds issue. This patch fixes the by\nchecking that the requested mapping region size should stay within the\nallocated region size.","modified":"2026-05-18T05:59:30.239285207Z","published":"2025-06-30T07:29:44.086Z","related":["ALSA-2025:11855","SUSE-SU-2025:02849-1","SUSE-SU-2025:02851-1","SUSE-SU-2025:02852-1","SUSE-SU-2025:02853-1","SUSE-SU-2025:02923-1","SUSE-SU-2025:02969-1","SUSE-SU-2025:02996-1","SUSE-SU-2025:02997-1","SUSE-SU-2025:03011-1","SUSE-SU-2025:03023-1","SUSE-SU-2025:03344-1","SUSE-SU-2025:20577-1","SUSE-SU-2025:20586-1","SUSE-SU-2025:20601-1","SUSE-SU-2025:20602-1","SUSE-SU-2025:21074-1","SUSE-SU-2025:21139-1","SUSE-SU-2025:21179-1","openSUSE-SU-2025:20081-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38088.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/620b77b23c41a6546e5548ffe2ea3ad71880dde4"},{"type":"WEB","url":"https://git.kernel.org/stable/c/81260c41b518b6f32c701425f1427562fa92f293"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8635e325b85dfb9ddebdfaa6b5605d40d16cd147"},{"type":"WEB","url":"https://git.kernel.org/stable/c/9c340b56d60545e4a159e41523dd8b23f81d3261"},{"type":"WEB","url":"https://git.kernel.org/stable/c/bbd5a9ddb0f9750783a48a871c9e12c0b68c5f39"},{"type":"WEB","url":"https://git.kernel.org/stable/c/cd097df4596f3a1e9d75eb8520162de1eb8485b2"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38088.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-38088"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"08a022ad3dfafc7e33d4529015e14bb75179cacc"},{"fixed":"81260c41b518b6f32c701425f1427562fa92f293"},{"fixed":"620b77b23c41a6546e5548ffe2ea3ad71880dde4"},{"fixed":"8635e325b85dfb9ddebdfaa6b5605d40d16cd147"},{"fixed":"9c340b56d60545e4a159e41523dd8b23f81d3261"},{"fixed":"bbd5a9ddb0f9750783a48a871c9e12c0b68c5f39"},{"fixed":"cd097df4596f3a1e9d75eb8520162de1eb8485b2"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38088.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"5.13.0"},{"fixed":"5.15.186"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.142"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.94"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.34"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.15.3"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38088.json"}}],"schema_version":"1.7.5"}