{"id":"CVE-2025-39898","summary":"e1000e: fix heap overflow in e1000_set_eeprom","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ne1000e: fix heap overflow in e1000_set_eeprom\n\nFix a possible heap overflow in e1000_set_eeprom function by adding\ninput validation for the requested length of the change in the EEPROM.\nIn addition, change the variable type from int to size_t for better\ncode practices and rearrange declarations to RCT.","modified":"2026-03-12T03:54:26.283875Z","published":"2025-10-01T07:42:46Z","related":["ALSA-2025:22387","ALSA-2025:22388","ALSA-2025:22395","ALSA-2025:22405","SUSE-SU-2025:21040-1","SUSE-SU-2025:21052-1","SUSE-SU-2025:21056-1","SUSE-SU-2025:21064-1","SUSE-SU-2025:21074-1","SUSE-SU-2025:21139-1","SUSE-SU-2025:21179-1","SUSE-SU-2025:4057-1","openSUSE-SU-2025:20081-1"],"references":[{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"},{"type":"WEB","url":"https://git.kernel.org/stable/c/0aec3211283482cfcdd606d1345e1f9acbcabd31"},{"type":"WEB","url":"https://git.kernel.org/stable/c/50a84d5c814039ad2abe2748aec3e89324a548a7"},{"type":"WEB","url":"https://git.kernel.org/stable/c/90fb7db49c6dbac961c6b8ebfd741141ffbc8545"},{"type":"WEB","url":"https://git.kernel.org/stable/c/99a8772611e2d7ec318be7f0f072037914a1f509"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b370f7b1f470a8d5485cc1e40e8ff663bb55d712"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b48adcacc34fbbc49046a7ee8a97839bef369c85"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ce8829d3d44b8622741bccca9f4408bc3da30b2b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ea832ec0583e2398ea0c5ed8d902c923e16f53c4"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"bc7f75fa97884d41efbfde1397b621fefb2550b4"},{"fixed":"ea832ec0583e2398ea0c5ed8d902c923e16f53c4"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"bc7f75fa97884d41efbfde1397b621fefb2550b4"},{"fixed":"ce8829d3d44b8622741bccca9f4408bc3da30b2b"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"bc7f75fa97884d41efbfde1397b621fefb2550b4"},{"fixed":"99a8772611e2d7ec318be7f0f072037914a1f509"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"bc7f75fa97884d41efbfde1397b621fefb2550b4"},{"fixed":"b48adcacc34fbbc49046a7ee8a97839bef369c85"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"bc7f75fa97884d41efbfde1397b621fefb2550b4"},{"fixed":"50a84d5c814039ad2abe2748aec3e89324a548a7"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"bc7f75fa97884d41efbfde1397b621fefb2550b4"},{"fixed":"b370f7b1f470a8d5485cc1e40e8ff663bb55d712"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"bc7f75fa97884d41efbfde1397b621fefb2550b4"},{"fixed":"0aec3211283482cfcdd606d1345e1f9acbcabd31"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"bc7f75fa97884d41efbfde1397b621fefb2550b4"},{"fixed":"90fb7db49c6dbac961c6b8ebfd741141ffbc8545"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-39898.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"2.6.24"},{"fixed":"5.4.299"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.5.0"},{"fixed":"5.10.243"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.192"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.151"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.105"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.46"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.16.6"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-39898.json"}}],"schema_version":"1.7.5"}