Home

Description

In the Linux kernel, the following vulnerability has been resolved: iio: accel: sca3300: fix uninitialized iio scan data Fix potential leak of uninitialized stack data to userspace by ensuring that the `channels` array is zeroed before use.

PUBLISHED Reserved 2025-04-16 | Published 2025-09-05 | Updated 2025-09-29 | Assigner Linux

Product status

Default status
unaffected

edeb67fbbf4b59a025a27891b92a9fc07e77d2f2 (git) before c88c04adb8611e436e1e773fd5db3f8d7397d089
affected

edeb67fbbf4b59a025a27891b92a9fc07e77d2f2 (git) before 4e5b705cc6147f0b9173c6219079f41416bdd3c0
affected

Default status
affected

6.16
affected

Any version before 6.16
unaffected

6.16.4 (semver)
unaffected

6.17 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/c88c04adb8611e436e1e773fd5db3f8d7397d089

git.kernel.org/...c/4e5b705cc6147f0b9173c6219079f41416bdd3c0

cve.org (CVE-2025-39690)

nvd.nist.gov (CVE-2025-39690)

Download JSON