https://blog.qife122.com/tags/ff-a/ Recent content in FF-A on 办公AI智能小助手 Hugo zh-cn qife Sat, 06 Dec 2025 16:33:20 +0800 https://blog.qife122.com/p/cve-2025-40266linux%E5%86%85%E6%A0%B8kvm%E7%9A%84arm64-ff-a%E5%86%85%E5%AD%98%E5%85%B1%E4%BA%AB%E5%81%8F%E7%A7%BB%E9%87%8F%E9%AA%8C%E8%AF%81%E6%BC%8F%E6%B4%9E/ Sat, 06 Dec 2025 16:33:20 +0800 https://blog.qife122.com/p/cve-2025-40266linux%E5%86%85%E6%A0%B8kvm%E7%9A%84arm64-ff-a%E5%86%85%E5%AD%98%E5%85%B1%E4%BA%AB%E5%81%8F%E7%A7%BB%E9%87%8F%E9%AA%8C%E8%AF%81%E6%BC%8F%E6%B4%9E/ <h3 id="cve-2025-40266---kvm-arm64-check-the-untrusted-offset-in-ff-a-memory-share">CVE-2025-40266 - KVM: arm64: Check the untrusted offset in FF-A memory share</h3> <h4 id="概述">概述</h4> <h4 id="漏洞时间线">漏洞时间线</h4> <h4 id="描述">描述</h4> <p>在 Linux 内核中，已解决以下漏洞：</p> <p>KVM: arm64: Check the untrusted offset in FF-A memory share</p> <p>验证偏移量，以防止当从主机内核设置足够大的未受信值（范围在 <code>[U32_MAX - sizeof(struct ffa_composite_mem_region) + 1, U32_MAX]</code> 内）时，虚拟机监控器（hypervisor）的 FF-A 缓冲区发生越界访问。</p>