PT-2025-32684 · Linux+9 · Linux Kernel+9

Publicado

2025-07-03

·

Atualizado

2026-04-20

·

CVE-2025-38500

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.15.0
Description: A use-after-free vulnerability exists in the Linux kernel related to xfrm interfaces and the collect md property. Specifically, the vulnerability occurs when changing an xfrm interface with the collect md property set, potentially leading to a double free when the network namespace is taken down. This issue arises because the check to enforce restrictions on changing collect md interfaces was not consistently applied, allowing an erroneous placement of the special interface in the xfrmi net hash.
Recommendations: Update to Linux kernel version 6.15.0 or later to address this vulnerability.

Exploit

Correção

DoS

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-416

Identificadores relacionados

ALSA-2025:15011
ALSA-2025:15782
ALSA-2025_15008
ALSA-2025_15009
ALSA-2025_15011
ALSA-2025_15785
ALSA-2025_15786
ALSA-2025_16372
ALSA-2025_16373
ALSA-2025_16880
ASB-A-436201996
AZL-66246
BDU:2025-15162
CVE-2025-38500
DLA-4328-1
DSA-5975-1
ECHO-6E29-9775-3B78
INFSA-2025_15011
OESA-2025-2120
OESA-2025-2121
OESA-2025-2122
OPENSUSE-SU-2025:20081-1
RHSA-2025_15011
SUSE-SU-2025:03272-1
SUSE-SU-2025:03290-1
SUSE-SU-2025:03301-1
SUSE-SU-2025:03382-1
SUSE-SU-2025:03602-1
SUSE-SU-2025:03633-1
SUSE-SU-2025:03634-1
SUSE-SU-2025:20653-1
SUSE-SU-2025:20669-1
SUSE-SU-2025:20739-1
SUSE-SU-2025:20756-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21085-1
SUSE-SU-2025:21086-1
SUSE-SU-2025:21087-1
SUSE-SU-2025:21088-1
SUSE-SU-2025:21089-1
SUSE-SU-2025:21090-1
SUSE-SU-2025:21091-1
SUSE-SU-2025:21092-1
SUSE-SU-2025:21093-1
SUSE-SU-2025:21094-1
SUSE-SU-2025:21095-1
SUSE-SU-2025:21096-1
SUSE-SU-2025:21097-1
SUSE-SU-2025:21098-1
SUSE-SU-2025:21099-1
SUSE-SU-2025:21100-1
SUSE-SU-2025:21103-1
SUSE-SU-2025:21107-1
SUSE-SU-2025:21108-1
SUSE-SU-2025:21109-1
SUSE-SU-2025:21110-1
SUSE-SU-2025:21111-1
SUSE-SU-2025:21112-1
SUSE-SU-2025:21114-1
SUSE-SU-2025:21116-1
SUSE-SU-2025:21117-1
SUSE-SU-2025:21118-1
SUSE-SU-2025:21119-1
SUSE-SU-2025:21120-1
SUSE-SU-2025:21121-1
SUSE-SU-2025:21122-1
SUSE-SU-2025:21123-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025:4160-1
SUSE-SU-2025:4161-1
SUSE-SU-2025:4164-1
SUSE-SU-2025:4167-1
SUSE-SU-2025:4200-1
SUSE-SU-2025:4201-1
SUSE-SU-2025:4208-1
SUSE-SU-2025:4261-1
SUSE-SU-2025:4262-1
SUSE-SU-2025:4265-1
SUSE-SU-2025:4268-1
SUSE-SU-2025:4269-1
SUSE-SU-2025:4282-1
SUSE-SU-2025:4302-1
SUSE-SU-2025:4306-1
SUSE-SU-2025_03272-1
SUSE-SU-2025_03290-1
SUSE-SU-2025_03301-1
SUSE-SU-2025_03382-1
SUSE-SU-2026:20149-1
SUSE-SU-2026:20164-1
SUSE-SU-2026:20169-1
USN-7791-1
USN-7791-2
USN-7791-3
USN-7791-4
USN-7792-1
USN-7792-2
USN-7792-3
USN-7798-1
USN-7799-1
USN-7800-1
USN-7801-1
USN-7801-2
USN-7801-3
USN-7808-1
USN-7808-2
USN-7809-1
USN-7821-1

Produtos afetados

Almalinux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu