AZL-64553

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-64553.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-64553

Upstream

CVE-2025-38112

Published

2025-07-03T09:15:24Z

Modified

2026-04-01T05:20:49.130821Z

Summary

CVE-2025-38112 affecting package kernel for versions less than 6.6.96.1-1

Details

In the Linux kernel, the following vulnerability has been resolved:

net: Fix TOCTOU issue in skisreadable()

sk->skprot->sockisreadable is a valid function pointer when sk resides in a sockmap. After the last skpsockput() (which usually happens when socket is removed from sockmap), sk->skprot gets restored and sk->skprot->sockis_readable becomes NULL.

This makes skisreadable() racy, if the value of sk->sk_prot is reloaded after the initial check. Which in turn may lead to a null pointer dereference.

Ensure the function pointer does not turn NULL after the check.

References

https://nvd.nist.gov/vuln/detail/CVE-2025-38112

Affected packages

Azure Linux:3 / kernel

Package

Name: kernel
Purl: pkg:rpm/azure-linux/kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.6.96.1-1

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-64553.json"