CVE-2025-38120

EPSS 0.04%
Veröffentlicht 03.07.2025 08:35:27
Zuletzt bearbeitet 03.07.2025 15:13:53
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nf_set_pipapo_avx2: fix initial map fill

If the first field doesn't cover the entire start map, then we must zero
out the remainder, else we leak those bits into the next match round map.

The early fix was incomplete and did only fix up the generic C
implementation.

A followup patch adds a test case to nft_concat_range.sh.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < b5ad58285f9217d68cd5ea2ad86ce254a3fe7c4d

Version 957a4d1c4c5849e4515c9fb4db21bf85318103dc

Status affected

Version < 90bc7f5a244aadee4292b28098b7c98aadd4b3aa

Version 9625c46ce6fd4f922595a4b32b1de5066d70464f

Status affected

Version < 39bab2d3517b5b50c609b4f8c66129bf619fffa0

Version 69b6a67f7052905e928d75a0c5871de50e686986

Status affected

Version < 251496ce1728c9fd47bd2b20a7b21b20b9a020ca

Version 791a615b7ad2258c560f91852be54b0480837c93

Status affected

Version < 8068e1e42b46518ce680dc6470bcd710efc3fa0a

Version 791a615b7ad2258c560f91852be54b0480837c93

Status affected

Version < ea77c397bff8b6d59f6d83dae1425b08f465e8b5

Version 791a615b7ad2258c560f91852be54b0480837c93

Status affected

Version 8058c88ac0df21239daee54b5934d5c80ca9685f

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.11

Status affected

Version < 6.11

Version 0

Status unaffected

Version <= 5.15.*

Version 5.15.186

Status unaffected

Version <= 6.1.*

Version 6.1.142

Status unaffected

Version <= 6.6.*

Version 6.6.94

Status unaffected

Version <= 6.12.*

Version 6.12.34

Status unaffected

Version <= 6.15.*

Version 6.15.3

Status unaffected

Version <= *

Version 6.16

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.097

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/b5ad58285f9217d68cd5ea2ad86ce254a3fe7c4d

https://git.kernel.org/stable/c/90bc7f5a244aadee4292b28098b7c98aadd4b3aa

https://git.kernel.org/stable/c/39bab2d3517b5b50c609b4f8c66129bf619fffa0

https://git.kernel.org/stable/c/251496ce1728c9fd47bd2b20a7b21b20b9a020ca

https://git.kernel.org/stable/c/8068e1e42b46518ce680dc6470bcd710efc3fa0a

https://git.kernel.org/stable/c/ea77c397bff8b6d59f6d83dae1425b08f465e8b5

https://nvd.nist.gov/vuln/detail/CVE-2025-38120

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38120

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38120

EUVD