CVE-2025-68731

Q: How severe is CVE-2025-68731?

CVSS scoring is not yet available for CVE-2025-68731. Check NVD for updates.

Q: Is there a patch for CVE-2025-68731?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.

Vulnerability Description

In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix an integer overflow in aie2_query_ctx_status_array() The unpublished smatch static checker reported a warning. drivers/accel/amdxdna/aie2_pci.c:904 aie2_query_ctx_status_array() warn: potential user controlled sizeof overflow 'args->num_element * args->element_size' '1-u32max(user) * 1-u32max(user)' Even this will not cause a real issue, it is better to put a reasonable limitation for element_size and num_element. Add condition to make sure the input element_size <= 4K and num_element <= 1K.

References

FAQ

What is CVE-2025-68731?

CVE-2025-68731 is a documented vulnerability. In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix an integer overflow in aie2_query_ctx_status_array() The unpublished smatch static checker reported a warning. ...

How severe is CVE-2025-68731?

CVSS scoring is not yet available for CVE-2025-68731. Check NVD for updates.

Is there a patch for CVE-2025-68731?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.