CVE-2025-38366

UNKNOWN 0.0

LoongArch: KVM: Check validity of "num_cpu" from user space

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Check validity of "num_cpu" from user space The maximum supported cpu number is EIOINTC_ROUTE_MAX_VCPUS about irqchip EIOINTC, here add validation about cpu number to avoid array pointer overflow.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Jul 25, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

1ad7efa552fd5cf4e8c49fea863c5c6a5dcf9f00 < a3293b4078ee93174f70f36d3ab7618554ce6ab6 1ad7efa552fd5cf4e8c49fea863c5c6a5dcf9f00 < cc8d5b209e09d3b52bca1ffe00045876842d96ae

Linux / Linux

6.13

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/a3293b4078ee93174f70f36d3ab7618554ce6ab6 git.kernel.org: https://git.kernel.org/stable/c/cc8d5b209e09d3b52bca1ffe00045876842d96ae