Main Vulnerability Database SB2025091735

SB2025091735 - Buffer overflow in Linux kernel efi stmm driver

Published: September 17, 2025

Security Bulletin ID SB2025091735

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Buffer overflow (CVE-ID: CVE-2025-39836)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the mm_communicate(), setup_mm_hdr(), get_max_payload(), get_property_int(), tee_get_variable(), tee_get_next_variable(), tee_set_variable() and tee_query_variable_info() functions in drivers/firmware/efi/stmm/tee_stmm_efi.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/630c0e6064daf84f17aad1a7d9ca76b562e3fe47
https://git.kernel.org/stable/c/77ff27ff0e4529a003c8a1c2492c111968c378d3
https://git.kernel.org/stable/c/c5e81e672699e0c5557b2b755cc8f7a69aa92bff