Vulnerability Lookup

🛡️ CVE-2025-71136

🟠 CVSS 7.1 — High ✅ No Known Exploit NVD

7.1

CVSS Score

0 Low4 Medium7 High9 Critical10

Description

In the Linux kernel, the following vulnerability has been resolved: media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() It's possible for cp_read() and hdmi_read() to return -EIO. Those values are further used as indexes for accessing arrays. Fix that by checking return values where it's needed. Found by Linux Verification Center (linuxtesting.org) with SVACE.

Details

Severity High

CVSS Score 7.1

CVSS Vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CWE N/A

Public Exploit ✅ No

Source NVD

Published 2026-01-14

Updated 2026-06-02

Modified 2026-04-16

Fix URL https://git.kernel.org/stable/c/60dde0960e3ead8a9569f6c494d90d0232ac0983

Affected Packages

Software	From version	Fixed in
kernel	6.13.0	6.18.4
linux-kernel	—	—

References

WEB https://git.kernel.org/stable/c/60dde0960e3ead8a9569f6c494d90d0232ac0983

WEB https://git.kernel.org/stable/c/8163419e3e05d71dcfa8fb49c8fdf8d76908fe51

WEB https://git.kernel.org/stable/c/a73881ae085db5702d8b13e2fc9f78d51c723d3f

WEB https://git.kernel.org/stable/c/b693d48a6ed0cd09171103ad418e4a693203d6e4

WEB https://git.kernel.org/stable/c/d6a22a4a96e4dfe6897cb3532d2b3016d87706f0

WEB https://git.kernel.org/stable/c/f81ee181cb036d046340c213091b69d9a8701a76

WEB https://git.kernel.org/stable/c/f913b9a2ccd6114b206b9e91dae5e3dc13a415a0

ADVISORY https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/71xxx/CVE-2025-71136.json

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2025-71136

PACKAGE https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

🔗 NVD 🔗 Mitre ✅ Fix / Advisory

Similar Threats

Unknown ALSA-2023:2458
Unknown ALSA-2023:1703
Unknown ALSA-2023:1566
Unknown ALSA-2023:1470
Unknown ALSA-2023:0951

Exploit Protection

Help block exploit attempts

BotEraser is designed to detect and help reduce malicious bot traffic that may target known vulnerabilities on your site.

Try BotEraser Free →

No credit card required · Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.

Help block exploit attempts

Company

Resources

Services

Trusted

Subscribe