Back to search
CVE-2025-38079
Published: Jun 18, 2025
Modified: May 12, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_hash - fix double free in hash_accept If accept(2) is called on socket type algif_hash with MSG_MORE flag set and crypto_ahash_import fails, sk2 is freed. However, it is also freed in af_alg_release, leading to slab-use-after-free error.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected fe869cdb89c95d060c77eea20204d6c91f233b53 - < 5bff312b59b3f2a54ff504e4f4e47272b64f3633affected fe869cdb89c95d060c77eea20204d6c91f233b53 - < bf7bba75b91539e93615f560893a599c1e1c98bfaffected fe869cdb89c95d060c77eea20204d6c91f233b53 - < c3059d58f79fdfb2201249c2741514e34562b547affected fe869cdb89c95d060c77eea20204d6c91f233b53 - < f0f3d09f53534ea385d55ced408f2b67059b16e4affected fe869cdb89c95d060c77eea20204d6c91f233b53 - < 134daaba93193df9e988524b5cd2f52d15eb1993+3 more versions |
Linux | Linux | affected 2.6.38unaffected 0 - < 2.6.38unaffected 5.4.294 - <= 5.4.*unaffected 5.10.238 - <= 5.10.*unaffected 5.15.185 - <= 5.15.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now