CVE-2025-37984 – Linux Kernel ECDsa Integer Overflow Vulnerability

In the Linux kernel, the following vulnerability has been resolved:

crypto: ecdsa – Harden against integer overflows in DIV_ROUND_UP()

Herbert notes that DIV_ROUND_UP() may overflow unnecessarily if an ecdsa
implementation’s ->key_size() callback returns an unusually large value.
Herbert instead suggests (for a division by 8):

X / 8 + !!(X & 7)

Based on this formula, introduce a generic DIV_ROUND_UP_POW2() macro and
use it in lieu of DIV_ROUND_UP() for ->key_size() return values.

Additionally, use the macro in ecc_digits_from_bytes(), whose “nbytes”
parameter is a ->key_size() return value in some instances, or a
user-specified ASN.1 length in the case of ecdsa_get_signature_rs().

Share the Post:

CVE-2025-10304 – Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin <= 2.3.8 – Missing Authorization to Unauthenticated Backup Failure

CVE ID : CVE-2025-10304 Published : Dec. 3, 2025, 3:27 a.m. | 26 minutes ago Description : The Everest Backup –

CVE-2025-12585 – MxChat – AI Chatbot for WordPress <= 2.5.5 – Unauthenticated Information Exposure

CVE ID : CVE-2025-12585 Published : Dec. 3, 2025, 3:27 a.m. | 26 minutes ago Description : The MxChat – AI

Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN

Company Registration Number: 5334133
Company VAT Number: 855 7246 95

CVE-2025-37984 – Linux Kernel ECDsa Integer Overflow Vulnerability

Related Posts

CVE-2025-10304 – Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin <= 2.3.8 – Missing Authorization to Unauthenticated Backup Failure

CVE-2025-12585 – MxChat – AI Chatbot for WordPress <= 2.5.5 – Unauthenticated Information Exposure

Useful Links

Other Links