Frame Length Check Issue in Linux Kernel's virtio-net by Linux Foundation
CVE-2025-38413
What is CVE-2025-38413?
A vulnerability exists in the Linux kernel affecting the virtio-net component, where the frame’s length is not accurately validated before processing. The flaw lies in the len argument passed to the buf_to_xdp function, which does not account for the virtio header length. This oversight can lead to incorrect data processing in network scenarios, potentially compromising data integrity and network stability. The solution implements an additional argument in buf_to_xdp to ensure correct differentiation between the first buffer and subsequent buffers for accurate frame length calculation.
Affected Version(s)
Linux a4e7ba7027012f009f22a68bcfde670f9298d3a4 < 892f6ed9a4a38bb3360fdff091b9241cfa105b61
Linux a4e7ba7027012f009f22a68bcfde670f9298d3a4 < 6013bb6bc24c2cac3f45b37a15b71b232a5b00ff
Linux a4e7ba7027012f009f22a68bcfde670f9298d3a4 < 5177373c31318c3c6a190383bfd232e6cf565c36