CVE-2025-40345

Dec. 15, 2025, 6:22 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound new_pba Discovered by Atuin - Automated Vulnerability Discovery Engine. new_pba comes from the status packet returned after each write. A bogus device could report values beyond the block count derived from info->capacity, letting the driver walk off the end of pba_to_lba[] and corrupt heap memory. Reject PBAs that exceed the computed block count and fail the transfer so we avoid touching out-of-range mapping entries.

Product(s) Impacted

Product Versions

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://git.kernel.org/stable/c/04a8a6393f3f2f471e05eacca33282dd30b01432
https://git.kernel.org/stable/c/26e9b5da3231da7dc357b363883b5b7b51a64092
https://git.kernel.org/stable/c/5ebe8d479aaf4f41ac35e6955332304193c646f6
https://git.kernel.org/stable/c/a20f1dd19d21dcb70140ea5a71b1f8cbe0c7e68f
https://git.kernel.org/stable/c/aa64e0e17e3a5991a25e6a46007770c629039869
https://git.kernel.org/stable/c/b59d4fda7e7d0aff1043a7f742487cb829f5aac1
https://git.kernel.org/stable/c/d00a6c04a502cd52425dbf35588732c652b16490

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2025-12-12
CVE-2025-40345

Timeline

Published: Dec. 12, 2025, 6:15 p.m.
Last Modified: Dec. 15, 2025, 6:22 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.