{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-38401","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-04-16T04:51:24.012Z","datePublished":"2025-07-25T12:53:44.961Z","dateUpdated":"2026-05-11T21:27:16.296Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T21:27:16.296Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmtk-sd: Prevent memory corruption from DMA map failure\n\nIf msdc_prepare_data() fails to map the DMA region, the request is\nnot prepared for data receiving, but msdc_start_data() proceeds\nthe DMA with previous setting.\nSince this will lead a memory corruption, we have to stop the\nrequest operation soon after the msdc_prepare_data() fails to\nprepare it."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/mmc/host/mtk-sd.c"],"versions":[{"version":"208489032bdd8d4a7de50f3057c175058f271956","lessThan":"5ac9e9e2e9cd6247d8c2d99780eae4556049e1cc","status":"affected","versionType":"git"},{"version":"208489032bdd8d4a7de50f3057c175058f271956","lessThan":"d54771571f74a82c59830a32e76af78a8e57ac69","status":"affected","versionType":"git"},{"version":"208489032bdd8d4a7de50f3057c175058f271956","lessThan":"48bf4f3dfcdab02b22581d8e350a2d23130b72c0","status":"affected","versionType":"git"},{"version":"208489032bdd8d4a7de50f3057c175058f271956","lessThan":"63e8953f16acdcb23e2d4dd8a566d3c34df3e200","status":"affected","versionType":"git"},{"version":"208489032bdd8d4a7de50f3057c175058f271956","lessThan":"61cdd663564674ea21ceb50aa9d3697cbe9e45f9","status":"affected","versionType":"git"},{"version":"208489032bdd8d4a7de50f3057c175058f271956","lessThan":"3419bc6a7b65cbbb91417bb9970208478e034c79","status":"affected","versionType":"git"},{"version":"208489032bdd8d4a7de50f3057c175058f271956","lessThan":"a5f5f67b284d81776d4a3eb1f8607e4b7f91f11c","status":"affected","versionType":"git"},{"version":"208489032bdd8d4a7de50f3057c175058f271956","lessThan":"f5de469990f19569627ea0dd56536ff5a13beaa3","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/mmc/host/mtk-sd.c"],"versions":[{"version":"4.2","status":"affected"},{"version":"0","lessThan":"4.2","status":"unaffected","versionType":"semver"},{"version":"5.4.296","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.240","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.187","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.144","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.97","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.37","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.15.6","lessThanOrEqual":"6.15.*","status":"unaffected","versionType":"semver"},{"version":"6.16","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.2","versionEndExcluding":"5.4.296"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.2","versionEndExcluding":"5.10.240"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.2","versionEndExcluding":"5.15.187"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.2","versionEndExcluding":"6.1.144"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.2","versionEndExcluding":"6.6.97"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.2","versionEndExcluding":"6.12.37"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.2","versionEndExcluding":"6.15.6"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.2","versionEndExcluding":"6.16"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/5ac9e9e2e9cd6247d8c2d99780eae4556049e1cc"},{"url":"https://git.kernel.org/stable/c/d54771571f74a82c59830a32e76af78a8e57ac69"},{"url":"https://git.kernel.org/stable/c/48bf4f3dfcdab02b22581d8e350a2d23130b72c0"},{"url":"https://git.kernel.org/stable/c/63e8953f16acdcb23e2d4dd8a566d3c34df3e200"},{"url":"https://git.kernel.org/stable/c/61cdd663564674ea21ceb50aa9d3697cbe9e45f9"},{"url":"https://git.kernel.org/stable/c/3419bc6a7b65cbbb91417bb9970208478e034c79"},{"url":"https://git.kernel.org/stable/c/a5f5f67b284d81776d4a3eb1f8607e4b7f91f11c"},{"url":"https://git.kernel.org/stable/c/f5de469990f19569627ea0dd56536ff5a13beaa3"}],"title":"mtk-sd: Prevent memory corruption from DMA map failure","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"title":"CVE Program Container","references":[{"url":"https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html"},{"url":"https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"}],"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2025-11-03T17:37:35.519Z"}}]}}