UDP Checksum Vulnerability in Linux Kernel Affects Network Functionality
CVE-2025-38432
Currently unrated
What is CVE-2025-38432?
A vulnerability within the Linux kernel's netpoll feature has surfaced due to a failure to initialize the UDP checksum field before initiating checksumming. This oversight, stemming from a prior code commit, has resulted in disrupted transmission of IPv6 packets, leading to improper checksum calculations. Correct initialization of 'udph->check' is crucial to ensure accurate checksum validation, particularly before invoking the IPv6 checksum function, 'csum_ipv6_magic()'. Addressing this issue promptly is essential for maintaining reliable network communications.
Affected Version(s)
Linux f1fce08e63fe1a2a8b8106b93b7244a39830edae < 353016ec159f939a380ff6746476a779367ba9a3
Linux f1fce08e63fe1a2a8b8106b93b7244a39830edae
Linux 6.15