CVE-2025-38081

spi-rockchip: Fix register out of bounds access

Published: 6/18/2025 Last updated: 7/15/2025 Reserved: 4/16/2025

In the Linux kernel, the following vulnerability has been resolved: spi-rockchip: Fix register out of bounds access Do not write native chip select stuff for GPIO chip selects. GPIOs can be numbered much higher than native CS. Also, it makes no sense.

CNA assigner: Linux (416baaa9-dc9f-4396-8d5f-8c081fb06d67) Requested by: n/a

Opam packages affected (27)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes orun rawlink rawlink-eio rawlink-lwt shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (3)

Product	Vendor	Version
Linux	Linux	12.2(50)SE5
Linux	Linux	n/a
Linux	Linux	QCA6797AQ

References (8)

https://git.kernel.org/stable/c/4a120221661fcecb253448d7b041a52d47f1d91f
https://git.kernel.org/stable/c/ace57bd1fb49d193edec5f6a1f255f48dd5fca90
https://git.kernel.org/stable/c/254e04ec799c1ff8c1e2bd08a57c6a849895d6ff
https://git.kernel.org/stable/c/7a874e8b54ea21094f7fd2d428b164394c6cb316
https://git.kernel.org/stable/c/4a120221661fcecb253448d7b041a52d47f1d91f
https://git.kernel.org/stable/c/ace57bd1fb49d193edec5f6a1f255f48dd5fca90
https://git.kernel.org/stable/c/254e04ec799c1ff8c1e2bd08a57c6a849895d6ff
https://git.kernel.org/stable/c/7a874e8b54ea21094f7fd2d428b164394c6cb316