Linux Kernel virtio-net XSK Frame Length Check Vulnerability

Vulnerability

A vulnerability in the Linux kernel's virtio-net implementation related to the handling of frame lengths in the eXpress Data Path (XDP) context has been addressed. The issue arose because the length of the frame data was not correctly accounting for the virtio header, leading to potential mismatches between the actual data length and the allocated buffer size. This vulnerability could have allowed for improper handling of network frames, potentially leading to memory management issues or data corruption.

Impact

The vulnerability could cause incorrect frame length handling, potentially leading to memory management issues or data corruption.

Added: Jul 25, 2025, 5:17 PM

Updated: Jul 25, 2025, 5:17 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel virtio-net XSK Frame Length Check Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating