CVE-2025-39812
published 2025-09-16CVE-2025-39812: In the Linux kernel, the following vulnerability has been resolved: sctp: initialize more fields in sctp_v6_from_sk() syzbot found that sin6_scope_id was not…
medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
In the Linux kernel, the following vulnerability has been resolved:
sctp: initialize more fields in sctp_v6_from_sk()
syzbot found that sin6_scope_id was not properly initialized,
leading to undefined behavior.
Clear sin6_scope_id and sin6_flowinfo.
BUG: KMSAN: uninit-value in __sctp_v6_cmp_addr+0x887/0x8c0 net/sctp/ipv6.c:649
__sctp_v6_cmp_addr+0x887/0x8c0 net/sctp/ipv6.c:649
sctp_inet6_cmp_addr+0x4f2/0x510 net/sctp/ipv6.c:983
sctp_bind_addr_conflict+0x22a/0x3b0 net/sctp/bind_addr.c:390
sctp_get_port_local+0x21eb/0x2440 net/sctp/socket.c:8452
sctp_get_port net/sctp/socket.c:8523 [inline]
sctp_listen_start net/sctp/socket.c:8567 [inline]
sctp_inet_listen+0x710/0xfd0 net/sctp/socket.c:8636
__sys_listen_socket net/socket.c:1912 [inline]
__sys_listen net/socket.c:1927 [inline]
__do_sys_listen net/socket.c:1932 [inline]
__se_sys_listen net/socket.c:1930 [inline]
__x64_sys_listen+0x343/0x4c0 net/socket.c:1930
x64_sys_call+0x271d/0x3e20 arch/x86/include/generated/asm/syscalls_64.h:51
do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
do_syscall_64+0xd9/0x210 arch/x86/entry/syscall_64.c:94
entry_SYSCALL_64_after_hwframe+0x77/0x7f
Local variable addr.i.i created at:
sctp_get_port net/sctp/socket.c:8515 [inline]
sctp_listen_start net/sctp/socket.c:8567 [inline]
sctp_inet_listen+0x650/0xfd0 net/sctp/socket.c:8636
__sys_listen_socket net/socket.c:1912 [inline]
__sys_listen net/socket.c:1927 [inline]
__do_sys_listen net/socket.c:1932 [inline]
__se_sys_listen net/socket.c:1930 [inline]
__x64_sys_listen+0x343/0x4c0 net/socket.c:1930
Affected
30 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | linux | < linux 6.1.153-1 (bookworm) | linux 6.1.153-1 (bookworm) |
| debian | linux-6.1 | < linux 6.1.153-1 (bookworm) | linux 6.1.153-1 (bookworm) |
| linux | linux | — | — |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 45e4b36593edffb7bbee5828ae820bc10a9fa0f3 | 45e4b36593edffb7bbee5828ae820bc10a9fa0f3 |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 9546934c2054bba1bd605c44e936619159a34027 | 9546934c2054bba1bd605c44e936619159a34027 |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 17d6c7747045e9b802c2f5dfaba260d309d831ae | 17d6c7747045e9b802c2f5dfaba260d309d831ae |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 65b4693d8bab5370cfcb44a275b4d8dcb06e56bf | 65b4693d8bab5370cfcb44a275b4d8dcb06e56bf |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 463aa96fca6209bb205f49f7deea3817d7ddaa3a | 463aa96fca6209bb205f49f7deea3817d7ddaa3a |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1bbc0c02aea1f1c405bd1271466889c25a1fe01b | 1bbc0c02aea1f1c405bd1271466889c25a1fe01b |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < f6c2cc99fc2387ba6499facd6108f6543382792d | f6c2cc99fc2387ba6499facd6108f6543382792d |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 2e8750469242cad8f01f320131fd5a6f540dbb99 | 2e8750469242cad8f01f320131fd5a6f540dbb99 |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | >= 0 < 5.10.244-1 | 5.10.244-1 |
| linux | linux_kernel | >= 0 < 6.1.153-1 | 6.1.153-1 |
| linux | linux_kernel | >= 0 < 6.12.48-1 | 6.12.48-1 |
| linux | linux_kernel | >= 0 < 6.16.5-1 | 6.16.5-1 |
| linux | linux_kernel | >= 0 < 5.15.0-163.173 | 5.15.0-163.173 |
| linux | linux_kernel | >= 0 < 6.8.0-106.106 | 6.8.0-106.106 |
| linux | linux_kernel | >= 2.6.12.1 < 5.4.298 | 5.4.298 |
| linux | linux_kernel | >= 5.11 < 5.15.191 | 5.15.191 |
| linux | linux_kernel | >= 5.16 < 6.1.150 | 6.1.150 |
| linux | linux_kernel | >= 5.5 < 5.10.242 | 5.10.242 |
| linux | linux_kernel | >= 6.13 < 6.16.5 | 6.16.5 |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
osv5.5MEDIUM