Medium severity5.5NVD Advisory· Published Apr 15, 2025· Updated Apr 15, 2026
CVE-2025-32776
CVE-2025-32776
Description
OpenRazer is an open source driver and user-space daemon to control Razer device lighting and other features on GNU/Linux. By writing specially crafted data to the matrix_custom_frame file, an attacker can cause the custom kernel driver to read more bytes than provided by user space. This data will be written into the RGB arguments which will be sent to the USB device. This issue has been patched in v3.10.2.
Patches
257610511d254d869abd20995Vulnerability mechanics
Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
5- github.com/openrazer/openrazer/commit/57610511d2548eda66999eaed5aa4517e89d6d39nvd
- github.com/openrazer/openrazer/commit/d869abd20995b4931795e1cde54d4ac84d9ca62fnvd
- github.com/openrazer/openrazer/issues/2433nvd
- github.com/openrazer/openrazer/security/advisories/GHSA-835j-6976-46jxnvd
- lists.debian.org/debian-lts-announce/2025/04/msg00032.htmlnvd
News mentions
0No linked articles in our index yet.