Description

In the Linux kernel, the following vulnerability has been resolved: atm: clip: prevent NULL deref in clip_push() Blamed commit missed that vcc_destroy_socket() calls clip_push() with a NULL skb. If clip_devs is NULL, clip_push() then crashes when reading skb->truesize.

INFO

Published Date :

2025-07-09T10:42:30.877Z

Last Modified :

2025-11-03T17:35:58.957Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-38251 vulnerability.

Vendors Products
Debian
  • Debian Linux
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-38251.

URL Resource
https://git.kernel.org/stable/c/3c709dce16999bf6a1d2ce377deb5dd6fdd8cb08 cve-icon cve-icon
https://git.kernel.org/stable/c/41f6420ee845006354c004839fed07da71e34aee cve-icon cve-icon
https://git.kernel.org/stable/c/88c88f91f4b3563956bb52e7a71a3640f7ece157 cve-icon cve-icon
https://git.kernel.org/stable/c/9199e8cb75f13a1650adcb3c6cad42789c43884e cve-icon cve-icon
https://git.kernel.org/stable/c/a07005a77b18ae59b8471e7e4d991fa9f642b3c2 cve-icon cve-icon
https://git.kernel.org/stable/c/b993ea46b3b601915ceaaf3c802adf11e7d6bac6 cve-icon cve-icon
https://git.kernel.org/stable/c/ede31ad949ae0d03cb4c5edd79991586ad7c8bb8 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html cve-icon
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html cve-icon
https://lore.kernel.org/linux-cve-announce/2025070934-CVE-2025-38251-3894@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-38251 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-38251 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact