CVE-2025-38608
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
19/08/2025
Last modified:
03/11/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
bpf, ktls: Fix data corruption when using bpf_msg_pop_data() in ktls<br />
<br />
When sending plaintext data, we initially calculated the corresponding<br />
ciphertext length. However, if we later reduced the plaintext data length<br />
via socket policy, we failed to recalculate the ciphertext length.<br />
<br />
This results in transmitting buffers containing uninitialized data during<br />
ciphertext transmission.<br />
<br />
This causes uninitialized bytes to be appended after a complete<br />
"Application Data" packet, leading to errors on the receiving end when<br />
parsing TLS record.
Impact
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/0e853c1464bcf61207f8b5c32d2ac5ee495e859d
- https://git.kernel.org/stable/c/16aca8bb4ad0d8a13c8b6da4007f4e52d53035bb
- https://git.kernel.org/stable/c/178f6a5c8cb3b6be1602de0964cd440243f493c9
- https://git.kernel.org/stable/c/1e480387d4b42776f8957fb148af9d75ce93b96d
- https://git.kernel.org/stable/c/6ba20ff3cdb96a908b9dc93cf247d0b087672e7c
- https://git.kernel.org/stable/c/73fc5d04009d3969ff8e8574f0fd769f04124e59
- https://git.kernel.org/stable/c/849d24dc5aed45ebeb3490df429356739256ac40
- https://git.kernel.org/stable/c/90d6ef67440cec2a0aad71a0108c8f216437345c
- https://git.kernel.org/stable/c/ee03766d79de0f61ea29ffb6ab1c7b196ea1b02e
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html