PT-2025-25807 · Linux+3 · Linux Kernel+3

Guoyu Yin

Published

2025-06-18

Updated

2025-12-03

CVE-2025-38032

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.14.0

Description A vulnerability has been resolved in the Linux kernel. The issue was reported by Guoyu Yin, who found a splat in the ipmr netns cleanup path. The vulnerability is related to the ipmr can free table() checks, which have been consolidated into a single helper to address the issue. The running kernel had CONFIG IP MROUTE MULTIPLE TABLES disabled, and the sanity check for such a build was too loose. The fix involves sharing the sanity check between the ipv4 and ipv6 code.

Recommendations For Linux kernel version 6.14.0 and earlier, update to a newer version to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

BDU:2025-10765

CVE-2025-38032

USN-7769-1

USN-7769-2

USN-7769-3

USN-7770-1

USN-7771-1

USN-7789-1

USN-7789-2

Affected Products

Astra Linux

Linuxmint

Linux Kernel

Ubuntu

PT-2025-25807 · Linux+3 · Linux Kernel+3

CVE-2025-38032

Weakness Enumeration

Related Identifiers

Affected Products

References · 212