CVE-2025-38550

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-38550
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38550.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-38550
Downstream
Related
Published
2025-08-16T11:34:18.619Z
Modified
2026-05-28T03:55:48.978174255Z
Summary
ipv6: mcast: Delay put pmc->idev in mld_del_delrec()
Details

In the Linux kernel, the following vulnerability has been resolved:

ipv6: mcast: Delay put pmc->idev in mlddeldelrec()

pmc->idev is still used in ip6mcclearsrc(), so as mldcleardelrec() does, the reference should be put after ip6mcclearsrc() return.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38550.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
63ed8de4be81b699ca727e9f8e3344bd487806d7
Fixed
6e4eec86fe5f6b3fdbc702d1d36ac2a6e7ec0806
Fixed
728db00a14cacb37f36e9382ab5fad55caf890cc
Fixed
dcbc346f50a009d8b7f4e330f9f2e22d6442fa26
Fixed
7929d27c747eafe8fca3eecd74a334503ee4c839
Fixed
5f18e0130194550dff734e155029ae734378b5ea
Fixed
ae3264a25a4635531264728859dbe9c659fad554

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38550.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.13.0
Fixed
5.15.190
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.147
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.100
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.40
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.15.8

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38550.json"