PT-2025-35991 · Linux+9 · Linux Kernel+9
Syzbot
·
Published
2025-08-07
·
Updated
2026-05-26
·
CVE-2025-38718
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
A flaw exists in the Linux kernel related to the handling of cloned GSO (Generic Segmentation Offload) packets within the SCTP (Stream Control Transmission Protocol) stack. Specifically, a cloned head skb (socket buffer) continues to share frag skbs (fragment socket buffers) in its fraglist with the original head skb, leading to potential use-of-uninitialized-memory issues. This condition was identified through syzbot reports, indicating potential bugs in functions such as
sctp inq pop, sctp assoc bh rcv, sctp inq push, and sctp backlog rcv.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
DoS
Use of Uninitialized Resource
Access of Uninitialized Pointer
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Almalinux
Centos
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu