Landlock Vulnerability in Linux Kernel Affects Multiple Versions
CVE-2025-38651

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
22 August 2025

What is CVE-2025-38651?

A vulnerability in the Linux Kernel's landlock subsystem pertains to improper input validation within the get_id_range() function. This function requires a positive integer as its first argument, yet the get_random_u8() call can return 0, potentially leading to unintended behavior in the system. The issue was addressed by clamping the value returned by get_random_u8(), ensuring that the input adheres to the expected range. This vulnerability was validated through extensive testing, confirming the resolution of the issue.

Affected Version(s)

Linux d9d2a68ed44bbae598a81cb95e0746fa6b13b57f < 127183361b69dbb7ac3246ad4726f93400481249

Linux d9d2a68ed44bbae598a81cb95e0746fa6b13b57f < 7d9ec2cfe12dd0d7c1a58213b9bef1bec66a3189

Linux d9d2a68ed44bbae598a81cb95e0746fa6b13b57f

References

https://git.kernel.org/stable/c/127183361b69dbb7ac3246ad4...
https://git.kernel.org/stable/c/7d9ec2cfe12dd0d7c1a58213b...
https://git.kernel.org/stable/c/e0a69cf2c03e61bd8069becb9...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-38651 : Landlock Vulnerability in Linux Kernel Affects Multiple Versions