CVE-2025-38165

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: A panic in the Linux kernel can be triggered by executing a specific command, resulting in a kernel bug. The issue originates from the assertion BUG ON(skb shared(skb)) in skb linearize(). A previous commit introduced skb get() to avoid race conditions, but this caused the panic to always occur when skb linearize is executed. The panic can be reproduced by executing a command with the "--rx-strp 100000" parameter, which forces the RX path to use the strparser module and triggers skb linearize.

Recommendations: To fix this issue, move skb get into sk psock skb ingress enqueue. For the verdict apply path, the skb get operation is unnecessary, so add a 'take ref' parameter to control its behavior.