CVE-2025-38441
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-38441
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38441.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-38441
- Downstream
- Related
- Published
- 2025-07-25T16:15:29Z
- Modified
- 2025-08-30T18:00:20Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
netfilter: flowtable: account for Ethernet header in nfflowpppoe_proto()
syzbot found a potential access to uninit-value in nfflowpppoe_proto()
Blamed commit forgot the Ethernet header.
BUG: KMSAN: uninit-value in nfflowoffloadinethook+0x7e4/0x940 net/netfilter/nfflowtableinet.c:27 nfflowoffloadinethook+0x7e4/0x940 net/netfilter/nfflowtableinet.c:27 nfhookentryhookfn include/linux/netfilter.h:157 [inline] nfhookslow+0xe1/0x3d0 net/netfilter/core.c:623 nfhookingress include/linux/netfilternetdev.h:34 [inline] nfingress net/core/dev.c:5742 [inline] _netifreceiveskbcore+0x4aff/0x70c0 net/core/dev.c:5837 _netifreceiveskbonecore net/core/dev.c:5975 [inline] _netifreceiveskb+0xcc/0xac0 net/core/dev.c:6090 netifreceiveskbinternal net/core/dev.c:6176 [inline] netifreceiveskb+0x57/0x630 net/core/dev.c:6235 tunrxbatched+0x1df/0x980 drivers/net/tun.c:1485 tungetuser+0x4ee0/0x6b40 drivers/net/tun.c:1938 tunchrwriteiter+0x3e9/0x5c0 drivers/net/tun.c:1984 newsyncwrite fs/readwrite.c:593 [inline] vfswrite+0xb4b/0x1580 fs/readwrite.c:686 ksyswrite fs/readwrite.c:738 [inline] _dosyswrite fs/readwrite.c:749 [inline]
- References
-
- https://git.kernel.org/stable/c/18cdb3d982da8976b28d57691eb256ec5688fad2
- https://git.kernel.org/stable/c/9fbc49429a23b02595ba82536c5ea425fdabb221
- https://git.kernel.org/stable/c/a3aea97d55964e70a1e6426aa4cafdc036e8a2dd
- https://git.kernel.org/stable/c/cfbf0665969af2c69d10c377d4c3d306e717efb4
- https://git.kernel.org/stable/c/e0dd2e9729660f3f4fcb16e0aef87342911528ef
- https://git.kernel.org/stable/c/eed8960b289327235185b7c32649c3470a3e969b