{"id":"CVE-2025-38402","summary":"idpf: return 0 size for RSS key if not supported","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: return 0 size for RSS key if not supported\n\nReturning -EOPNOTSUPP from function returning u32 is leading to\ncast and invalid size value as a result.\n\n-EOPNOTSUPP as a size probably will lead to allocation fail.\n\nCommand: ethtool -x eth0\nIt is visible on all devices that don't have RSS caps set.\n\n[  136.615917] Call Trace:\n[  136.615921]  \u003cTASK\u003e\n[  136.615927]  ? __warn+0x89/0x130\n[  136.615942]  ? __alloc_frozen_pages_noprof+0x322/0x330\n[  136.615953]  ? report_bug+0x164/0x190\n[  136.615968]  ? handle_bug+0x58/0x90\n[  136.615979]  ? exc_invalid_op+0x17/0x70\n[  136.615987]  ? asm_exc_invalid_op+0x1a/0x20\n[  136.616001]  ? rss_prepare_get.constprop.0+0xb9/0x170\n[  136.616016]  ? __alloc_frozen_pages_noprof+0x322/0x330\n[  136.616028]  __alloc_pages_noprof+0xe/0x20\n[  136.616038]  ___kmalloc_large_node+0x80/0x110\n[  136.616072]  __kmalloc_large_node_noprof+0x1d/0xa0\n[  136.616081]  __kmalloc_noprof+0x32c/0x4c0\n[  136.616098]  ? rss_prepare_get.constprop.0+0xb9/0x170\n[  136.616105]  rss_prepare_get.constprop.0+0xb9/0x170\n[  136.616114]  ethnl_default_doit+0x107/0x3d0\n[  136.616131]  genl_family_rcv_msg_doit+0x100/0x160\n[  136.616147]  genl_rcv_msg+0x1b8/0x2c0\n[  136.616156]  ? __pfx_ethnl_default_doit+0x10/0x10\n[  136.616168]  ? __pfx_genl_rcv_msg+0x10/0x10\n[  136.616176]  netlink_rcv_skb+0x58/0x110\n[  136.616186]  genl_rcv+0x28/0x40\n[  136.616195]  netlink_unicast+0x19b/0x290\n[  136.616206]  netlink_sendmsg+0x222/0x490\n[  136.616215]  __sys_sendto+0x1fd/0x210\n[  136.616233]  __x64_sys_sendto+0x24/0x30\n[  136.616242]  do_syscall_64+0x82/0x160\n[  136.616252]  ? __sys_recvmsg+0x83/0xe0\n[  136.616265]  ? syscall_exit_to_user_mode+0x10/0x210\n[  136.616275]  ? do_syscall_64+0x8e/0x160\n[  136.616282]  ? __count_memcg_events+0xa1/0x130\n[  136.616295]  ? count_memcg_events.constprop.0+0x1a/0x30\n[  136.616306]  ? handle_mm_fault+0xae/0x2d0\n[  136.616319]  ? do_user_addr_fault+0x379/0x670\n[  136.616328]  ? clear_bhb_loop+0x45/0xa0\n[  136.616340]  ? clear_bhb_loop+0x45/0xa0\n[  136.616349]  ? clear_bhb_loop+0x45/0xa0\n[  136.616359]  entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[  136.616369] RIP: 0033:0x7fd30ba7b047\n[  136.616376] Code: 0c 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b8 0f 1f 00 f3 0f 1e fa 80 3d bd d5 0c 00 00 41 89 ca 74 10 b8 2c 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 71 c3 55 48 83 ec 30 44 89 4c 24 2c 4c 89 44\n[  136.616381] RSP: 002b:00007ffde1796d68 EFLAGS: 00000202 ORIG_RAX: 000000000000002c\n[  136.616388] RAX: ffffffffffffffda RBX: 000055d7bd89f2a0 RCX: 00007fd30ba7b047\n[  136.616392] RDX: 0000000000000028 RSI: 000055d7bd89f3b0 RDI: 0000000000000003\n[  136.616396] RBP: 00007ffde1796e10 R08: 00007fd30bb4e200 R09: 000000000000000c\n[  136.616399] R10: 0000000000000000 R11: 0000000000000202 R12: 000055d7bd89f340\n[  136.616403] R13: 000055d7bd89f3b0 R14: 000055d78943f200 R15: 0000000000000000","modified":"2026-04-02T12:47:58.076402Z","published":"2025-07-25T12:53:45.677Z","related":["SUSE-SU-2025:03600-1","SUSE-SU-2025:03601-1","SUSE-SU-2025:03602-1","SUSE-SU-2025:03633-1","SUSE-SU-2025:03634-1","SUSE-SU-2025:20851-1","SUSE-SU-2025:20861-1","SUSE-SU-2025:20870-1","SUSE-SU-2025:20898-1","SUSE-SU-2025:21074-1","SUSE-SU-2025:21139-1","SUSE-SU-2025:21179-1","SUSE-SU-2025:3725-1","SUSE-SU-2025:3751-1","openSUSE-SU-2025:20081-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38402.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/018ff57fd79c38be989b8b3248bbe69bcfb77160"},{"type":"WEB","url":"https://git.kernel.org/stable/c/326e384ee7acbebf0541ac064ac7a4dd1f1dde1d"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f77bf1ebf8ff6301ccdbc346f7b52db928f9cbf8"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38402.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-38402"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"02cbfba1add5bd9088c7d14c6b93b77a6ea8f3bb"},{"fixed":"018ff57fd79c38be989b8b3248bbe69bcfb77160"},{"fixed":"326e384ee7acbebf0541ac064ac7a4dd1f1dde1d"},{"fixed":"f77bf1ebf8ff6301ccdbc346f7b52db928f9cbf8"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38402.json"}}],"schema_version":"1.7.5"}