CVE-2025-38403

Source
https://nvd.nist.gov/vuln/detail/CVE-2025-38403
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38403.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-38403
Downstream
Related
Published
2025-07-25T14:15:31Z
Modified
2025-08-12T21:01:18Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

vsock/vmci: Clear the vmci transport packet properly when initializing it

In vmcitransportpacketinit memset the vmcitransport_packet before populating the fields to avoid any uninitialised data being left in the structure.

References

Affected packages