CVE-2025-39718
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-05

Last updated on: 2025-11-03

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Validate length in packet header before skb_put() When receiving a vsock packet in the guest, only the virtqueue buffer size is validated prior to virtio_vsock_skb_rx_put(). Unfortunately, virtio_vsock_skb_rx_put() uses the length from the packet header as the length argument to skb_put(), potentially resulting in SKB overflow if the host has gone wonky. Validate the length as advertised by the packet header before calling virtio_vsock_skb_rx_put().
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-05
Last Modified
2025-11-03
Generated
2026-06-16
AI Q&A
2025-09-05
EPSS Evaluated
2026-06-14
NVD
CVE-2025-39718
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel 6.1.153
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability occurs in the Linux kernel's vsock/virtio component. When receiving a vsock packet in a guest system, only the virtqueue buffer size is validated before calling the function virtio_vsock_skb_rx_put(). However, this function uses the length specified in the packet header as the length argument to skb_put(), which can lead to an SKB (socket buffer) overflow if the host sends a malformed packet with an incorrect length. The fix involves validating the length from the packet header before calling virtio_vsock_skb_rx_put() to prevent this overflow.

Impact Analysis

This vulnerability can lead to a socket buffer overflow in the Linux kernel when processing vsock packets. Such an overflow could potentially be exploited to cause denial of service or possibly execute arbitrary code within the guest system, depending on the attacker's capabilities and environment. This could compromise system stability and security.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-39718. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart