CVE-2025-39687

HIGH

In the Linux kernel, the following vulnerability has been resolved: iio: light: as73211: Ensure buffer holes are zeroed Given that the buffer is copied to a kfifo that ultimately user space can read, ensure we zero it.

CVSS v3.1 Score

7.1
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Attack Vector
LOCAL
Complexity
LOW
Privileges
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
NONE
Availability
HIGH
Published: 9/5/2025Modified: 5/12/2026

Related Intelligence (1)

CRITICALData Breach

Siemens SIMATIC

<p><a href="https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-134-10.json"><strong>View CSAF</strong></a></p> <h2>Summary</h2> <p><strong>SIMATIC CN 4100 contains multiple vulnerabilities which could potentially lead to a compromise in availability, integrity and confidentiality. Siemens has released a new version for SIMATIC CN 4100 and recommends to update to the late

CVE-2024-47704CVE-2024-57924
CISA Advisories

References (10)

https://git.kernel.org/stable/c/433b99e922943efdfd62b9a8e3ad1604838181f2Patchhttps://git.kernel.org/stable/c/83f14c4ca1ad78fcfb3e0de07d6d8a0c59550fc2Patchhttps://git.kernel.org/stable/c/8acd9a0eaa8c9a28e385c0a6a56bb821cb549771Patchhttps://git.kernel.org/stable/c/99b508340d0d1b9de0856c48c77898b14c0df7cfPatchhttps://git.kernel.org/stable/c/cce55ca4e7a221d5eb2c0b757a868eacd6344e4aPatchhttps://git.kernel.org/stable/c/d8c5d87a431596e0e02bd7fe3bff952b002a03bbPatchhttps://git.kernel.org/stable/c/fd441fd972067f80861a0b66605c0febb0d038ddPatchhttps://lists.debian.org/debian-lts-announce/2025/10/msg00007.htmlMailing ListThird Party Advisoryhttps://lists.debian.org/debian-lts-announce/2025/10/msg00008.htmlMailing ListThird Party Advisoryhttps://cert-portal.siemens.com/productcert/html/ssa-032379.html