CVE-2025-38079

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-38079

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38079.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-38079

Downstream

BELL-CVE-2025-38079

DEBIAN-CVE-2025-38079

DSA-5973-1

ECHO-8840-3ce2-b927

OESA-2025-1820

OESA-2025-1876

OESA-2025-1877

OESA-2025-1878

OESA-2025-1879

OESA-2025-1880

RHSA-2025:12752

RHSA-2025:12753

RHSA-2025:13598

RHSA-2025:13602

RHSA-2025:14511

RHSA-2025:14691

RHSA-2025:14692

RHSA-2025:14696

RHSA-2025:14742

RHSA-2025:14986

RHSA-2025:14987

RHSA-2025:15016

RHSA-2025:15035

RHSA-2025:15658

RHSA-2025:15670

RLSA-2025:12752

RLSA-2025:12753

SUSE-SU-2025:02249-1

SUSE-SU-2025:02538-1

SUSE-SU-2025:02844-1

SUSE-SU-2025:02844-2

SUSE-SU-2025:02846-1

SUSE-SU-2025:02848-1

SUSE-SU-2025:02849-1

SUSE-SU-2025:02850-1

SUSE-SU-2025:02851-1

SUSE-SU-2025:02852-1

SUSE-SU-2025:02854-1

SUSE-SU-2025:02857-1

SUSE-SU-2025:02858-1

SUSE-SU-2025:02859-1

SUSE-SU-2025:02860-1

SUSE-SU-2025:02875-1

SUSE-SU-2025:02876-1

SUSE-SU-2025:02878-1

SUSE-SU-2025:02883-1

SUSE-SU-2025:02918-1

SUSE-SU-2025:02923-1

SUSE-SU-2025:02932-1

SUSE-SU-2025:02933-1

SUSE-SU-2025:02934-1

UBUNTU-CVE-2025-38079

USN-7704-1

USN-7704-2

USN-7704-3

USN-7704-4

USN-7704-5

USN-7711-1

USN-7712-1

USN-7712-2

Related

Published

2025-06-18T10:15:41Z

Modified

2025-08-12T21:01:37Z

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

crypto: algifhash - fix double free in hashaccept

If accept(2) is called on socket type algifhash with MSGMORE flag set and cryptoahashimport fails, sk2 is freed. However, it is also freed in afalgrelease, leading to slab-use-after-free error.

References

Affected packages