CVE-2025-37998

Source
https://nvd.nist.gov/vuln/detail/CVE-2025-37998
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37998.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-37998
Downstream
Related
Published
2025-05-29T14:15:36Z
Modified
2025-08-13T00:00:20Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

openvswitch: Fix unsafe attribute parsing in output_userspace()

This patch replaces the manual Netlink attribute iteration in outputuserspace() with nlaforeachnested(), which ensures that only well-formed attributes are processed.

References

Affected packages