CVE-2025-38481 in kernel-syms | CVE-2025-38481

Q: How to fix?

Upgrade SLES:15.6 kernel-syms to version 6.4.0-150600.23.65.1 or higher.

Threat Intelligence

0.04% (11^th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk IDSNYK-SLES156-KERNELSYMS-12224792
published28 Aug 2025
disclosed27 Aug 2025

Report a new vulnerability Found a mistake?

Introduced: 27 Aug 2025

CVE-2025-38481 (opens in a new tab)

How to fix?

Upgrade SLES:15.6 kernel-syms to version 6.4.0-150600.23.65.1 or higher.

NVD Description

Note: Versions mentioned in the description apply only to the upstream kernel-syms package and not the kernel-syms package as distributed by SLES. See How to fix? for SLES:15.6 relevant fixed versions and status.

In the Linux kernel, the following vulnerability has been resolved:

comedi: Fail COMEDI_INSNLIST ioctl if n_insns is too large

The handling of the COMEDI_INSNLIST ioctl allocates a kernel buffer to hold the array of struct comedi_insn, getting the length from the n_insns member of the struct comedi_insnlist supplied by the user. The allocation will fail with a WARNING and a stack dump if it is too large.

Avoid that by failing with an -EINVAL error if the supplied n_insns value is unreasonable.

Define the limit on the n_insns value in the MAX_INSNS macro. Set this to the same value as MAX_SAMPLES (65536), which is the maximum allowed sum of the values of the member n in the array of struct comedi_insn, and sensible comedi instructions will have an n of at least 1.

References

CVSS Base Scores

version 3.1

Attack Vector (AV)
Local
Attack Complexity (AC)
Low
Privileges Required (PR)
Low
User Interaction (UI)
None

Scope (S)
Unchanged

Confidentiality (C)
None
Integrity (I)
None
Availability (A)
Low

CVE-2025-38481 Affecting kernel-syms package, versions <6.4.0-150600.23.65.1

Severity