PT-2025-30867 · Linux+5 · Linux Kernel+5

Syzbot

·

Published

2025-07-08

·

Updated

2026-03-13

·

CVE-2025-38453

CVSS v2.0

6.0

Medium

VectorAV:L/AC:H/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.16.0-rc4-syzkaller-00108-g17bbde2e1716
Description The Linux kernel contains a flaw in the io uring/msg ring subsystem related to the freeing of io kiocb requests. Specifically, the freeing of requests was not properly deferred for RCU (Read-Copy-Update), leading to a potential use-after-free condition detected by KASAN (Kernel Address Sanitizer). This issue arises because msg ring requests allocate and free memory independently, necessitating deferred freeing to ensure safety. The vulnerability was identified through syzbot testing.
Recommendations Update to Linux kernel version 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 or a later version to address this issue.

Exploit

Fix

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

ALSA-2026:1690
BDU:2025-11508
CVE-2025-38453
DSA-6008-1
OPENSUSE-SU-2025:20081-1
RHSA-2026:1690
RHSA-2026:1727
SUSE-SU-2025:02853-1
SUSE-SU-2025:02997-1
SUSE-SU-2025:03011-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025:3886-1
SUSE-SU-2025:3995-1
SUSE-SU-2025:4001-1
SUSE-SU-2025:4056-1
SUSE-SU-2025_02853-1
SUSE-SU-2025_02997-1
SUSE-SU-2025_03011-1
USN-7879-1
USN-7879-2
USN-7879-3
USN-7879-4
USN-7880-1
USN-7934-1

Affected Products

Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu