Back to search
CVE-2025-37998
Published: May 29, 2025
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: openvswitch: Fix unsafe attribute parsing in output_userspace() This patch replaces the manual Netlink attribute iteration in output_userspace() with nla_for_each_nested(), which ensures that only well-formed attributes are processed.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected ccb1352e76cff0524e7ccb2074826a092dd13016 - < 6712dc21506738f5f22b4f68b7c0d9e0df819dbdaffected ccb1352e76cff0524e7ccb2074826a092dd13016 - < 06b4f110c79716c181a8c5da007c259807840232affected ccb1352e76cff0524e7ccb2074826a092dd13016 - < 47f7f00cf2fa3137d5c0416ef1a71bdf77901395affected ccb1352e76cff0524e7ccb2074826a092dd13016 - < bca8df998cce1fead8cbc69144862eadc2e34c87affected ccb1352e76cff0524e7ccb2074826a092dd13016 - < 0236742bd959332181c1fcc41a05b7b709180501+3 more versions |
Linux | Linux | affected 3.3unaffected 0 - < 3.3unaffected 5.4.294 - <= 5.4.*unaffected 5.10.238 - <= 5.10.*unaffected 5.15.183 - <= 5.15.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now