CVE-2025-38375

virtio-net: ensure the received length does not exceed allocated size

Description

In the Linux kernel, the following vulnerability has been resolved: virtio-net: ensure the received length does not exceed allocated size In xdp_linearize_page, when reading the following buffers from the ring, we forget to check the received length with the true allocate size. This can lead to an out-of-bound read. This commit adds that missing check.

N/A
CVSS
Severity:
EPSS 0.02%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/773e95c268b5d859f51f7547559734fd2a57660c
https://git.kernel.org/stable/c/ddc8649d363141fb3371dd81a73e1cb4ef8ed1e1
https://git.kernel.org/stable/c/982beb7582c193544eb9c6083937ec5ac1c9d651
https://git.kernel.org/stable/c/6aca3dad2145e864dfe4d1060f45eb1bac75dd58
https://git.kernel.org/stable/c/80b971be4c37a4d23a7f1abc5ff33dc7733d649b
https://git.kernel.org/stable/c/bc68bc3563344ccdc57d1961457cdeecab8f81ef
https://git.kernel.org/stable/c/11f2d0e8be2b5e784ac45fa3da226492c3e506d8
https://git.kernel.org/stable/c/315dbdd7cdf6aa533829774caaf4d25f1fd20e73

Frequently Asked Questions

What is the severity of CVE-2025-38375?
CVE-2025-38375 has not yet been assigned a CVSS score.
How to fix CVE-2025-38375?
To fix CVE-2025-38375, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2025-38375 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2025-38375 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2025-38375?
CVE-2025-38375 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.