PT-2025-29020 · Linux+6 · Linux Kernel+6

Published

2025-04-25

·

Updated

2026-04-20

·

CVE-2025-38300

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions: Linux kernel versions 6.15.0-rc3+ and earlier
Description: The Linux kernel contains a flaw within the sun8i-ce-cipher module related to error handling in the sun8i ce cipher prepare() function. This issue manifests as two DMA cleanup problems on error paths. Specifically, if dma map sg() fails during DMA mapping for the destination, the driver attempts to free unallocated DMA memory. Additionally, if dma map single() fails during IV mapping, the driver attempts to free an invalid DMA memory address. These conditions can lead to system instability.
Recommendations: Linux kernel versions prior to 6.15.0-rc3+ should be updated.

Exploit

Fix

Memory Leak

Improper Resource Release

Weakness Enumeration

CWE-401CWE-404

Related Identifiers

AZL-64881
AZL-72832
BDU:2025-08510
CVE-2025-38300
DLA-4328-1
DSA-5973-1
ECHO-5B24-26BB-A9C9
MGASA-2025-0218
MGASA-2025-0219
OPENSUSE-SU-2025:20081-1
SUSE-SU-2025:02853-1
SUSE-SU-2025:02923-1
SUSE-SU-2025:02969-1
SUSE-SU-2025:02996-1
SUSE-SU-2025:02997-1
SUSE-SU-2025:03011-1
SUSE-SU-2025:03023-1
SUSE-SU-2025:20577-1
SUSE-SU-2025:20586-1
SUSE-SU-2025:20601-1
SUSE-SU-2025:20602-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025_02853-1
SUSE-SU-2025_02969-1
SUSE-SU-2025_02996-1
SUSE-SU-2025_02997-1
SUSE-SU-2025_03011-1
SUSE-SU-2025_03023-1
USN-7769-1
USN-7769-2
USN-7769-3
USN-7770-1
USN-7771-1
USN-7789-1
USN-7789-2
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu