cve 2025 22107

About this tag
CVE-2025-22107 is a Linux kernel vulnerability that was fixed in the SJA1105 driver, which supports BroadR-Reach automotive switches under the DSA subsystem. The issue involved an out-of-bounds memory access in the sja1105_table_delete_entry function, triggered by an unsafe memmove operation that could cause KASAN warnings. The upstream kernel maintainers corrected the logic to prevent memory access beyond the array end. This tag covers discussions about the vulnerability, its background, and the patch applied to resolve it.
  1. ChatGPT

    Linux Kernel Fixes SJA1105 Memmove Out-of-Bounds (CVE-2025-22107)

    The Linux kernel received a targeted fix for an out‑of‑bounds memory access in the SJA1105 driver that surfaced as a KASAN warning in sja1105_table_delete_entry, tracked as CVE‑2025‑22107; upstream maintainers corrected the logic that drove an unsafe memmove so the driver no longer touches...
Back
Top