CVE-2025-38618
Published: Aug 22, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: vsock: Do not allow binding to VMADDR_PORT_ANY It is possible for a vsock to autobind to VMADDR_PORT_ANY. This can cause a use-after-free when a connection is made to the bound socket. The socket returned by accept() also has port VMADDR_PORT_ANY but is not on the list of unbound sockets. Binding it will result in an extra refcount decrement similar to the one fixed in fcdd2242c023 (vsock: Keep the binding until socket destruction). Modify the check in __vsock_bind_connectible() to also prevent binding to VMADDR_PORT_ANY.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected d021c344051af91f42c5ba9fdedc176740cbd238 - < c04a2c1ca25b9b23104124d3b2d349d934e302deaffected d021c344051af91f42c5ba9fdedc176740cbd238 - < d1a5b1964cef42727668ac0d8532dae4f8c19386affected d021c344051af91f42c5ba9fdedc176740cbd238 - < cf86704798c1b9c46fa59dfc2d662f57d1394d79affected d021c344051af91f42c5ba9fdedc176740cbd238 - < f138be5d7f301fddad4e65ec66dfc3ceebf79be3affected d021c344051af91f42c5ba9fdedc176740cbd238 - < 44bd006d5c93f6a8f28b106cbae2428c5d0275b7+4 more versions |
Linux | Linux | affected 3.9unaffected 0 - < 3.9unaffected 5.4.297 - <= 5.4.*unaffected 5.10.241 - <= 5.10.*unaffected 5.15.190 - <= 5.15.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now