CVE-2025-39718
BaseFortify
Publication date: 2025-09-05
Last updated on: 2025-11-03
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | 6.1.153 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability occurs in the Linux kernel's vsock/virtio component. When receiving a vsock packet in a guest system, only the virtqueue buffer size is validated before calling the function virtio_vsock_skb_rx_put(). However, this function uses the length specified in the packet header as the length argument to skb_put(), which can lead to an SKB (socket buffer) overflow if the host sends a malformed packet with an incorrect length. The fix involves validating the length from the packet header before calling virtio_vsock_skb_rx_put() to prevent this overflow.
How can this vulnerability impact me? :
This vulnerability can lead to a socket buffer overflow in the Linux kernel when processing vsock packets. Such an overflow could potentially be exploited to cause denial of service or possibly execute arbitrary code within the guest system, depending on the attacker's capabilities and environment. This could compromise system stability and security.