PT-2025-30803 · Linux+6 · Linux Kernel+6

Michele Orru

·

Published

2025-01-01

·

Updated

2026-04-20

·

CVE-2025-38403

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The Linux kernel contains an issue within the vsock/vmci subsystem. Specifically, the vmci transport packet structure was not properly initialized, potentially leaving uninitialized data within the structure. This occurred during the initialization of the vmci transport packet.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Weakness Enumeration

CWE-457

Related Identifiers

ALSA-2026:2212
ALSA-2026:2264
ALSA-2026:2282
ALSA-2026:2378
AZL-65771
AZL-73025
BDU:2025-10792
CVE-2025-38403
DLA-4327-1
DLA-4328-1
DSA-5973-1
ECHO-134B-60E8-D879
MGASA-2025-0218
MGASA-2025-0219
OPENSUSE-SU-2025:20081-1
RHSA-2026:2212
RHSA-2026:2264
RHSA-2026:2282
RHSA-2026:2378
SUSE-SU-2025:02846-1
SUSE-SU-2025:02853-1
SUSE-SU-2025:02923-1
SUSE-SU-2025:02969-1
SUSE-SU-2025:02996-1
SUSE-SU-2025:02997-1
SUSE-SU-2025:03011-1
SUSE-SU-2025:03023-1
SUSE-SU-2025:20577-1
SUSE-SU-2025:20586-1
SUSE-SU-2025:20601-1
SUSE-SU-2025:20602-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025_02846-1
SUSE-SU-2025_02853-1
SUSE-SU-2025_02969-1
SUSE-SU-2025_02996-1
SUSE-SU-2025_02997-1
SUSE-SU-2025_03011-1
SUSE-SU-2025_03023-1
USN-7774-1
USN-7774-2
USN-7774-3
USN-7774-4
USN-7774-5
USN-7775-1
USN-7775-2
USN-7775-3
USN-7776-1
USN-7833-1
USN-7833-2
USN-7833-3
USN-7833-4
USN-7834-1
USN-7856-1
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Debian
Linuxmint
Linux Kernel
Red Os
Rocky Linux
Suse
Ubuntu