CVE-2025-38730 – A Linux kernel vulnerability in io

Q: What is the severity of CVE-2025-38730?

CVE-2025-38730 has a CVSS score of 7.8 (HIGH). A Linux kernel vulnerability in io_uring's networking component allows memory corruption when using ring-provided buffers with partial retries. This affects Linux systems using io_uring with provided buffer rings for network operations, potentially leading to data corruption or crashes.

📋 TL;DR

A Linux kernel vulnerability in io_uring's networking component allows memory corruption when using ring-provided buffers with partial retries. This affects Linux systems using io_uring with provided buffer rings for network operations, potentially leading to data corruption or crashes.

💻 Affected Systems

Products:

Linux kernel

Versions: Kernel versions with vulnerable io_uring/net code (specific versions not provided in CVE, but patches available for stable branches)

Operating Systems: Linux distributions using affected kernel versions

Default Config Vulnerable: ✅ No

Notes: Only vulnerable when using io_uring with provided buffer rings for network operations (sockets with MSG_WAITALL or streaming sockets).

📦 What is this software?

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Data corruption in applications using multiple sockets with shared buffer groups, potentially leading to privilege escalation or system crashes.

🟠

Likely Case

Application crashes or data corruption in multi-socket io_uring applications using provided buffer rings.

🟢

If Mitigated

Limited impact if io_uring with provided buffer rings is not used for network operations.

🌐 Internet-Facing: MEDIUM - Requires specific io_uring configuration and network operations to be exploitable.

🏢 Internal Only: MEDIUM - Same technical requirements as internet-facing, but limited to internal network access.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires local access and specific io_uring configuration. Exploitation involves manipulating buffer retry behavior.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Patches available in stable kernel trees (commits: 21a4ddb0f5e9, 2eb7937b5fc7, 3b53dc1c641f, 41b70df5b38b, fe9da1812f86)

Vendor Advisory: https://git.kernel.org/stable/c/21a4ddb0f5e933f372808c10b9ac704505751bb1

Restart Required: Yes

Instructions:

1. Update Linux kernel to patched version. 2. Check distribution-specific security advisories. 3. Reboot system after kernel update.

🔧 Temporary Workarounds

Disable io_uring provided buffer rings

linux

Avoid using provided buffer rings with io_uring for network operations

Avoid MSG_WAITALL with provided buffers

linux

Do not use MSG_WAITALL flag when using provided buffer rings with sockets

🧯 If You Can't Patch

Disable io_uring functionality if not required
Monitor systems for crashes or abnormal behavior in applications using io_uring

🔍 How to Verify

Check if Vulnerable:

Check kernel version and verify if using io_uring with provided buffer rings for network operations

Check Version:

uname -r

Verify Fix Applied:

Verify kernel version includes the fix commits or check with distribution package manager

📡 Detection & Monitoring

Log Indicators:

Kernel oops messages
Application crashes when using io_uring with sockets
Memory corruption errors

SIEM Query:

Search for kernel panic or oops logs containing 'io_uring' or 'buffer' references

📊 Metadata

CVE ID: CVE-2025-38730

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-787

EPSS Score: 0.02% exploit probability (2.8th percentile)

Published: September 4, 2025

Last Updated: November 25, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-38730, you might also want to check these: