CVE-2025-38613 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-38613 PUBLISHED CVSS 5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: staging: gpib: fix unset padding field copy back to userspace The introduction of a padding field in the gpib_board_info_ioctl is showing up as initialized data on the stack frame being copyied back to userspace in function board_info_ioctl. The simplest fix is to initialize the entire struct to zero to ensure all unassigned padding fields are zero'd before being copied back to userspace.

EPSS 0.02% · 5.2th percentile

Risk Scores

CVSS v3.1

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Score

0.02%

5.2th percentile

Affected Products

Vendor	Product	Versions
Linux	Linux	9dde4559e93955ccc47d588f7fd051684d55c4e7, 9dde4559e93955ccc47d588f7fd051684d55c4e7, 6.13
linux	linux_kernel	6.13, 6.13, 6.13

Timeline

Jan 21, 1970 Security Advisory
Aug 19, 2025 CVE Published
Aug 20, 2025 EPSS Score
Aug 20, 2025 Coalition ESS Score
Aug 26, 2025 Coalition ESS Score
Aug 27, 2025 EPSS Score
Sep 4, 2025 EPSS Score
Sep 11, 2025 EPSS Score
Sep 19, 2025 EPSS Score
Sep 26, 2025 EPSS Score
Oct 4, 2025 EPSS Score
Oct 4, 2025 Coalition ESS Score

References

Open in Interactive Console →