VDB
CVE-2025-38613
CVE-2025-38613
PUBLISHED
CVSS 5.5 MEDIUM
In the Linux kernel, the following vulnerability has been resolved: staging: gpib: fix unset padding field copy back to userspace The introduction of a padding field in the gpib_board_info_ioctl is showing up as initialized data on the stack frame being copyied back to userspace in function board_info_ioctl. The simplest fix is to initialize the entire struct to zero to ensure all unassigned padding fields are zero'd before being copied back to userspace.
EPSS 0.03% · 8.3th percentile
Risk Scores
CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.03%
8.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux | 6.17, 6.13, 0 |
| linux | linux_kernel | 6.13, 6.13, 6.13 |
Exploit Intelligence
- https://git.kernel.org/stable/c/19dedd4f70f5a6505e7c601ef7dd40542d1d9aa5 (circl)
- https://git.kernel.org/stable/c/a739d3b13bff0dfa1aec679d08c7062131a2a425 (circl)
- CVE-2025-38578.yara (github-yara)
- CVE-2025-38578.yara (github-yara)
- CVE-2025-38578.yara (github-yara)
- CVE-2025-38578.yara (github-yara)
- CVE-2025-38578.yara (github-yara)
- TestCaseRule-CVE-2025-38555.yara (github-yara)
- TestCaseRule-CVE-2025-38555.yara (github-yara)
- TestCaseRule-CVE-2025-38555.yara (github-yara)
…and 2 more exploits
Timeline
- Jan 21, 1970 Security Advisory
- Aug 19, 2025 CVE Published
- Aug 20, 2025 EPSS Score
- Aug 20, 2025 Coalition ESS Score
- Aug 26, 2025 Coalition ESS Score
- Aug 28, 2025 EPSS Score
- Sep 5, 2025 EPSS Score
- Sep 13, 2025 EPSS Score
- Sep 21, 2025 EPSS Score
- Sep 29, 2025 EPSS Score
- Oct 4, 2025 Coalition ESS Score
- Oct 6, 2025 Coalition ESS Score