CVE-2025-38061

In the Linux kernel, the following vulnerability has been resolved:

net: pktgen: fix access outside of user given buffer in pktgen_thread_write()

Honour the user given buffer size for the strn_len() calls (otherwise
strn_len() will access memory outside of the user given buffer).
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
UNKNOWN
---
LinuxCNA
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
vulnerable
bullseye (security)
vulnerable
bookworm
vulnerable
bookworm (security)
vulnerable
trixie (security)
vulnerable
sid
6.12.32-1
fixed
trixie
6.12.32-1
fixed
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/128cdb617a87767c29be43e4431129942fce41df
https://git.kernel.org/stable/c/425e64440ad0a2f03bdaf04be0ae53dededbaa77
https://git.kernel.org/stable/c/5bfa81539e22af4c40ae5d43d7212253462383a6
https://git.kernel.org/stable/c/6b1d3e9db82d01a88de1795b879df67c2116b4f4
https://git.kernel.org/stable/c/8fef258b555c75a467a6b4b7e3a3cbc46d5f4102
https://git.kernel.org/stable/c/a3d89f1cfe1e6d4bb164db2595511fd33db21900
https://git.kernel.org/stable/c/c81c2ee1c3b050ed5c4e92876590cc7a259183f6
https://git.kernel.org/stable/c/ef1158a6a650ecee72ab40851b1d52e04d3f9cb5