Upstream information
Description
In the Linux kernel, the following vulnerability has been resolved:xfrm: Zero padding when dumping algos and encap
When copying data to user-space we should ensure that only valid
data is copied over. Padding in structures may be filled with
random (possibly sensitve) data and should never be given directly
to user-space.
This patch fixes the copying of xfrm algorithms and the encap
template in xfrm_user so that padding is zeroed.
SUSE information
Overall state of this security issue: New
This issue is currently rated as having not set severity.
SUSE Bugzilla entry: 1251778 [NEW] No SUSE Security Announcements cross referenced.SUSE Timeline for this CVE
CVE page created: Tue Oct 7 20:01:31 2025CVE page last modified: Wed Oct 8 22:10:21 2025