CVE-2025-39888

HIGH 7.8

fuse: Block access to folio overlimit

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

6th

In the Linux kernel, the following vulnerability has been resolved: fuse: Block access to folio overlimit syz reported a slab-out-of-bounds Write in fuse_dev_do_write. When the number of bytes to be retrieved is truncated to the upper limit by fc->max_pages and there is an offset, the oob is triggered. Add a loop termination condition to prevent overruns.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Sep 23, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

3568a956932621cafadafc8b75fcf6dc06555105 < 623719227b114d73a2cee45f1b343ced63ce09ec 3568a956932621cafadafc8b75fcf6dc06555105 < 9d81ba6d49a7457784f0b6a71046818b86ec7e44

Linux / Linux

6.16

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/623719227b114d73a2cee45f1b343ced63ce09ec git.kernel.org: https://git.kernel.org/stable/c/9d81ba6d49a7457784f0b6a71046818b86ec7e44