In the Linux kernel, the following vulnerability has been resolved:

virtio-net: ensure the received length does not exceed allocated size

In xdp_linearize_page, when reading the following buffers from the ring,
we forget to check the received length with the true allocate size. This
can lead to an out-of-bound read. This commit adds that missing check.

Metrics

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00035.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Linux
  • Linux Kernel

No data.

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors Products
Linux
  • Linux Kernel
References
Link Providers
https://git.kernel.org/stable/c/11f2d0e8be2b5e784ac45fa3da226492c3e506d8 cve-icon cve-icon
https://git.kernel.org/stable/c/315dbdd7cdf6aa533829774caaf4d25f1fd20e73 cve-icon cve-icon
https://git.kernel.org/stable/c/6aca3dad2145e864dfe4d1060f45eb1bac75dd58 cve-icon cve-icon
https://git.kernel.org/stable/c/773e95c268b5d859f51f7547559734fd2a57660c cve-icon cve-icon
https://git.kernel.org/stable/c/80b971be4c37a4d23a7f1abc5ff33dc7733d649b cve-icon cve-icon
https://git.kernel.org/stable/c/982beb7582c193544eb9c6083937ec5ac1c9d651 cve-icon cve-icon
https://git.kernel.org/stable/c/bc68bc3563344ccdc57d1961457cdeecab8f81ef cve-icon cve-icon
https://git.kernel.org/stable/c/ddc8649d363141fb3371dd81a73e1cb4ef8ed1e1 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025072503-CVE-2025-38375-3faa@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-38375 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-38375 cve-icon
History

Thu, 28 Aug 2025 14:45:00 +0000

Type Values Removed Values Added
References

Tue, 29 Jul 2025 12:30:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 cvssV3_1

{'score': 7.0, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}

threat_severity

Moderate

Sat, 26 Jul 2025 11:30:00 +0000

Type Values Removed Values Added
First Time appeared Linux
Linux linux Kernel
Vendors & Products Linux
Linux linux Kernel

Fri, 25 Jul 2025 13:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: virtio-net: ensure the received length does not exceed allocated size In xdp_linearize_page, when reading the following buffers from the ring, we forget to check the received length with the true allocate size. This can lead to an out-of-bound read. This commit adds that missing check.
Title virtio-net: ensure the received length does not exceed allocated size
References
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2025-08-28T14:43:06.603Z

Reserved: 2025-04-16T04:51:24.009Z

Link: CVE-2025-38375

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-07-25T13:15:26.517

Modified: 2025-08-28T15:15:48.893

Link: CVE-2025-38375

cve-icon Redhat

Severity : Moderate

Publid Date: 2025-07-25T00:00:00Z

Links: CVE-2025-38375 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2025-07-26T11:22:04Z