CVE-2025-38618: vsock: Do not allow binding to VMADDR_PORT_ANY

Published Aug 22, 2025
·
Updated

In the Linux kernel, the following vulnerability has been resolved:

vsock: Do not allow binding to VMADDRPORTANY

It is possible for a vsock to autobind to VMADDRPORTANY. This can cause a use-after-free when a connection is made to the bound socket. The socket returned by accept() also has port VMADDRPORTANY but is not on the list of unbound sockets. Binding it will result in an extra refcount decrement similar to the one fixed in fcdd2242c023 (vsock: Keep the binding until socket destruction).

Modify the check in vsockbindconnectible() to also prevent binding to VMADDRPORTANY.

Affected Software

14 affected componentsFixes available
Linux Linux kernel
Linux Linux kernel>=3.9<5.4.297
Linux Linux kernel>=5.5<5.10.241
Linux Linux kernel>=5.11<5.15.190
Linux Linux kernel>=5.16<6.1.148
Linux Linux kernel>=6.2<6.6.102
Linux Linux kernel>=6.7<6.12.42
Linux Linux kernel>=6.13<6.15.10
Linux Linux kernel>=6.16<6.16.1
Linux Linux kernel=6.17-rc1
Debian Debian Linux=11.0
Microsoft azl3 kernel 6.6.96.2-2
Patch available
Microsoft cbl2 kernel 5.15.186.1-1
Patch available
Microsoft azl3 kernel 6.6.96.2-1

Remediation

Patch Available

https://git.kernel.org/stable/c/32950b1907919be86a7a2697d6f93d57068b3865

Patch Available

https://git.kernel.org/stable/c/44bd006d5c93f6a8f28b106cbae2428c5d0275b7

Patch Available

https://git.kernel.org/stable/c/8f01093646b49f6330bb2d36761983fd829472b1

Patch Available

https://git.kernel.org/stable/c/aba0c94f61ec05315fa7815d21aefa4c87f6a9f4

Patch Available

https://git.kernel.org/stable/c/c04a2c1ca25b9b23104124d3b2d349d934e302de

Patch Available

https://git.kernel.org/stable/c/cf86704798c1b9c46fa59dfc2d662f57d1394d79

Patch Available

https://git.kernel.org/stable/c/d1a5b1964cef42727668ac0d8532dae4f8c19386

Patch Available

https://git.kernel.org/stable/c/d73960f0cf03ef1dc9e96ec7a20e538accc26d87

Patch Available

https://git.kernel.org/stable/c/f138be5d7f301fddad4e65ec66dfc3ceebf79be3

Event History

Aug 22, 2025
CVE Published
via MITRE·01:01 PM
Data Sourced
via MITRE·01:01 PM
Description
Data Sourced
via NVD·02:15 PM
RemedyDescriptionSeverityWeaknessAffected Software
Sep 3, 2025
Data Sourced
via Microsoft·10:21 PM
DescriptionSeverityWeaknessAffected Software
Sep 4, 2025
Updated
via Microsoft·05:21 AM
SeverityAffected Software
Updated
via Microsoft·05:21 AM
DescriptionSeverity
Jan 16, 2026
Data Sourced
12:00 AM
Weakness

Parent advisories

This vulnerability appears in the following advisories.

Peer vulnerabilities

Found alongside the following vulnerabilities.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2025-38618?

CVE-2025-38618 has a severity rating based on its potential impact, particularly related to use-after-free vulnerabilities in the Linux kernel.

2

How do I fix CVE-2025-38618?

To fix CVE-2025-38618, ensure your Linux kernel is updated to a version that addresses this vulnerability.

3

What systems are affected by CVE-2025-38618?

CVE-2025-38618 affects the Linux kernel and its associated operating systems.

4

What is the impact of CVE-2025-38618?

The impact of CVE-2025-38618 includes potential use-after-free issues leading to unexpected behavior in applications using vsock.

5

When was CVE-2025-38618 resolved?

CVE-2025-38618 was resolved in a recent update to the Linux kernel.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203