Security Advisory

CVE-2025-38375

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-07-25 12:53:17

Last updated 2026-05-11 21:26:46

Assigner Linux

State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: virtio-net: ensure the received length does not exceed allocated size In xdp_linearize_page, when reading the following buffers from the ring, we forget to check the received length with the true allocate size. This can lead to an out-of-bound read. This commit adds that missing check.

← Browse all CVEs View on cve.org ↗