admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-29 01:31:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2025/CVE-2025-218xx/CVE-2025-21837.json
cad-safe-bot 7ab230f046 Auto-Update: 2025-03-16T03:00:19.723046+00:00
2025-03-16 03:03:50 +00:00

29 lines
2.4 KiB
JSON
Raw Blame History

{
"id": "CVE-2025-21837",
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"published": "2025-03-07T09:15:16.710",
"lastModified": "2025-03-07T09:15:16.710",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/uring_cmd: unconditionally copy SQEs at prep time\n\nThis isn't generally necessary, but conditions have been observed where\nSQE data is accessed from the original SQE after prep has been done and\noutside of the initial issue. Opcode prep handlers must ensure that any\nSQE related data is stable beyond the prep phase, but uring_cmd is a bit\nspecial in how it handles the SQE which makes it susceptible to reading\nstale data. If the application has reused the SQE before the original\ncompletes, then that can lead to data corruption.\n\nDown the line we can relax this again once uring_cmd has been sanitized\na bit, and avoid unnecessarily copying the SQE."
},
{
"lang": "es",
"value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: io_uring/uring_cmd: copiar SQE incondicionalmente en el momento de la preparaci\u00f3n Esto no suele ser necesario, pero se han observado condiciones en las que se accede a los datos de SQE desde el SQE original despu\u00e9s de que se haya realizado la preparaci\u00f3n y fuera del problema inicial. Los controladores de preparaci\u00f3n del c\u00f3digo de operaci\u00f3n deben garantizar que todos los datos relacionados con SQE sean estables m\u00e1s all\u00e1 de la fase de preparaci\u00f3n, pero uring_cmd es un poco especial en la forma en que gestiona el SQE, lo que lo hace susceptible a leer datos obsoletos. Si la aplicaci\u00f3n ha reutilizado el SQE antes de que se complete el original, eso puede provocar la corrupci\u00f3n de los datos. M\u00e1s adelante podemos relajar esto nuevamente una vez que uring_cmd se haya depurado un poco y evitar copiar innecesariamente el SQE."
}
],
"metrics": {},
"references": [
{
"url": "https://git.kernel.org/stable/c/87fe1d68842a308998b315c8ed0163a1d639017c",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
},
{
"url": "https://git.kernel.org/stable/c/d6211ebbdaa541af197b50b8dd8f22642ce0b87f",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
}
]
}
Reference in New Issue View Git Blame Copy Permalink