Buffer Access Vulnerability in Linux Kernel's Packet Generator
CVE-2025-38061

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 June 2025

What is CVE-2025-38061?

A vulnerability in the Linux Kernel's packet generator (pktgen) allows for potential access violations outside of a user-defined buffer. This occurs due to improper handling of buffer sizes in strn_len() calls, leading to memory access beyond allocated limits. The flaw could undermine system integrity by allowing unauthorized memory access, emphasizing the critical need for timely updates to the kernel to avoid exploitation.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 5bfa81539e22af4c40ae5d43d7212253462383a6

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 128cdb617a87767c29be43e4431129942fce41df

References

https://git.kernel.org/stable/c/a3d89f1cfe1e6d4bb164db259...

https://git.kernel.org/stable/c/5bfa81539e22af4c40ae5d43d...

https://git.kernel.org/stable/c/128cdb617a87767c29be43e44...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 18, 2025
Vulnerability Reserved
Apr 16, 2025