PT-2025-27956 · Linux+6 · Linux Kernel+6

Published

2025-06-17

·

Updated

2026-04-20

·

CVE-2025-38181

CVSS v2.0

6.0

Medium

VectorAV:L/AC:H/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version
Description: A null pointer dereference issue was found in the Linux kernel, specifically in the calipso req {set,del}attr() functions. This issue can be triggered when the SYN Cookie feature is used, causing a null pointer dereference in the sock omalloc() function. The problem arises when the rsk listener is NULL, which can occur when the SYN Cookie is returned to its client. The estimated number of potentially affected devices is not provided.
Recommendations: To resolve this issue, return an error in calipso req setattr() and calipso req delattr() when the SYN Cookie case is encountered. As a temporary workaround, consider disabling the SYN Cookie feature for CALIPSO until a patch is available.

Exploit

Fix

NULL Pointer Dereference

Weakness Enumeration

CWE-911CWE-476

Related Identifiers

AZL-64734
BDU:2025-09674
CVE-2025-38181
DLA-4327-1
DLA-4328-1
DSA-5973-1
ECHO-1B84-AA47-554E
MGASA-2025-0218
MGASA-2025-0219
OESA-2025-1959
OESA-2025-1960
OESA-2025-1961
OESA-2025-1963
OESA-2025-1964
OESA-2025-2080
OPENSUSE-SU-2025:20081-1
SUSE-SU-2025:02588-1
SUSE-SU-2025:02846-1
SUSE-SU-2025:02848-1
SUSE-SU-2025:02849-1
SUSE-SU-2025:02850-1
SUSE-SU-2025:02851-1
SUSE-SU-2025:02852-1
SUSE-SU-2025:02853-1
SUSE-SU-2025:02923-1
SUSE-SU-2025:02969-1
SUSE-SU-2025:02996-1
SUSE-SU-2025:02997-1
SUSE-SU-2025:03011-1
SUSE-SU-2025:03023-1
SUSE-SU-2025:03315-1
SUSE-SU-2025:03317-1
SUSE-SU-2025:03319-1
SUSE-SU-2025:03321-1
SUSE-SU-2025:03329-1
SUSE-SU-2025:03336-1
SUSE-SU-2025:03337-1
SUSE-SU-2025:03339-1
SUSE-SU-2025:03341-1
SUSE-SU-2025:03342-1
SUSE-SU-2025:03343-1
SUSE-SU-2025:03350-1
SUSE-SU-2025:03356-1
SUSE-SU-2025:03358-1
SUSE-SU-2025:03359-1
SUSE-SU-2025:03362-1
SUSE-SU-2025:03363-1
SUSE-SU-2025:03370-1
SUSE-SU-2025:03374-1
SUSE-SU-2025:03375-1
SUSE-SU-2025:03381-1
SUSE-SU-2025:03387-1
SUSE-SU-2025:03389-1
SUSE-SU-2025:03391-1
SUSE-SU-2025:03393-1
SUSE-SU-2025:03395-1
SUSE-SU-2025:03396-1
SUSE-SU-2025:03397-1
SUSE-SU-2025:03400-1
SUSE-SU-2025:03406-1
SUSE-SU-2025:03408-1
SUSE-SU-2025:03410-1
SUSE-SU-2025:03412-1
SUSE-SU-2025:03414-1
SUSE-SU-2025:03418-1
SUSE-SU-2025:03419-1
SUSE-SU-2025:20577-1
SUSE-SU-2025:20586-1
SUSE-SU-2025:20601-1
SUSE-SU-2025:20602-1
SUSE-SU-2025:20722-1
SUSE-SU-2025:20723-1
SUSE-SU-2025:20724-1
SUSE-SU-2025:20725-1
SUSE-SU-2025:20726-1
SUSE-SU-2025:20727-1
SUSE-SU-2025:20728-1
SUSE-SU-2025:20729-1
SUSE-SU-2025:20730-1
SUSE-SU-2025:20731-1
SUSE-SU-2025:20733-1
SUSE-SU-2025:20734-1
SUSE-SU-2025:20735-1
SUSE-SU-2025:20737-1
SUSE-SU-2025:20738-1
SUSE-SU-2025:20768-1
SUSE-SU-2025:20769-1
SUSE-SU-2025:20770-1
SUSE-SU-2025:20771-1
SUSE-SU-2025:20772-1
SUSE-SU-2025:20774-1
SUSE-SU-2025:20784-1
SUSE-SU-2025:20785-1
SUSE-SU-2025:20786-1
SUSE-SU-2025:20787-1
SUSE-SU-2025:20788-1
SUSE-SU-2025:20789-1
SUSE-SU-2025:20790-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025:2588-1
SUSE-SU-2025:4123-1
SUSE-SU-2025_02588-1
SUSE-SU-2025_02846-1
SUSE-SU-2025_02848-1
SUSE-SU-2025_02849-1
SUSE-SU-2025_02853-1
SUSE-SU-2025_02969-1
SUSE-SU-2025_02996-1
SUSE-SU-2025_02997-1
SUSE-SU-2025_03011-1
SUSE-SU-2025_03023-1
USN-7774-1
USN-7774-2
USN-7774-3
USN-7774-4
USN-7774-5
USN-7775-1
USN-7775-2
USN-7775-3
USN-7776-1
USN-7833-1
USN-7833-2
USN-7833-3
USN-7833-4
USN-7834-1
USN-7856-1
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu