Main Vulnerability Database SB20250711100

SB20250711100 - Input validation error in Linux kernel perf amlogic driver

Published: July 11, 2025

Security Bulletin ID SB20250711100

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Input validation error (CVE-ID: CVE-2025-38295)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the meson_ddr_pmu_create() function in drivers/perf/amlogic/meson_ddr_pmu_core.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/097469a2b0f12b91b4f27b9e9e4f2c46484cde30
https://git.kernel.org/stable/c/6f5f53048d3b761d694430632d3a03977273e987
https://git.kernel.org/stable/c/77511c2d2d1cbce8d9b4f50849843dd469d14173
https://git.kernel.org/stable/c/b038ffbd49e41f99228dbb0c66d6dd7b20292884