CVE-2025-38375

HIGH EPSS 6.7%
Published Jul 25, 202511mo ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Jul 25, 2025 11mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: virtio-net: ensure the received length does not exceed allocated size In xdp_linearize_page, when reading the following buffers from the ring, we forget to check the received length with the true allocate size. This can lead to an out-of-bound read. This commit adds that missing check.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
6.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-125 Out-of-bounds Read Memory Safety

Affected Products 12

VendorProductVersionRange
linuxlinux_kernel*≥4.14  –  <5.4.297
linuxlinux_kernel*≥5.5  –  <5.10.241
linuxlinux_kernel*≥5.11  –  <5.15.189
linuxlinux_kernel*≥5.16  –  <6.1.144
linuxlinux_kernel*≥6.2  –  <6.6.97
linuxlinux_kernel*≥6.7  –  <6.12.37
linuxlinux_kernel*≥6.13  –  <6.15.6
linuxlinux_kernel6.16any
linuxlinux_kernel6.16any
linuxlinux_kernel6.16any
linuxlinux_kernel6.16any
debiandebian_linux11.0any

References 10

  • git.kernel.org https://git.kernel.org/stable/c/11f2d0e8be2b5e784ac45fa3da226492c3e506d8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/315dbdd7cdf6aa533829774caaf4d25f1fd20e73
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6aca3dad2145e864dfe4d1060f45eb1bac75dd58
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/773e95c268b5d859f51f7547559734fd2a57660c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/80b971be4c37a4d23a7f1abc5ff33dc7733d649b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/982beb7582c193544eb9c6083937ec5ac1c9d651
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bc68bc3563344ccdc57d1961457cdeecab8f81ef
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ddc8649d363141fb3371dd81a73e1cb4ef8ed1e1
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
    Third Party Advisory
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
    Third Party Advisory

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/11f2d0e8be2b5e784ac45fa3da226492c3e506d8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/315dbdd7cdf6aa533829774caaf4d25f1fd20e73
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6aca3dad2145e864dfe4d1060f45eb1bac75dd58
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/773e95c268b5d859f51f7547559734fd2a57660c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/80b971be4c37a4d23a7f1abc5ff33dc7733d649b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/982beb7582c193544eb9c6083937ec5ac1c9d651
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bc68bc3563344ccdc57d1961457cdeecab8f81ef
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ddc8649d363141fb3371dd81a73e1cb4ef8ed1e1
    Patch