CVE-2025-39786
- Source
- https://cve.org/CVERecord?id=CVE-2025-39786
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-39786.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-39786
- Downstream
- Published
- 2025-09-11T16:56:35.706Z
- Modified
- 2026-04-02T12:48:09.289400Z
- Summary
- iio: adc: ad7173: fix channels index for syscalib_mode
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
iio: adc: ad7173: fix channels index for syscalib_mode
Fix the index used to look up the channel when accessing the syscalibmode attribute. The address field is a 0-based index (same as scanindex) that it used to access the channel in the ad7173_channels array throughout the driver. The channels field, on the other hand, may not match the address field depending on the channel configuration specified in the device tree and could result in an out-of-bounds access.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39786.json" }- References
-
- https://git.kernel.org/stable/c/0eb8d7b25397330beab8ee62c681975b79f37223
- https://git.kernel.org/stable/c/2def1a8691eb43654da0ae0d2fdb3722e20262a5
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39786.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-39786
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git