PT-2025-31073 · Linux+5 · Linux Kernel+5

Published

2025-07-11

·

Updated

2026-04-20

·

CVE-2025-38476

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A use-after-free issue was identified in the rpl do srh inline() function within the Linux kernel. The vulnerability occurs when the function fetches an IPv6 header (ipv6 hdr(skb)) and accesses it after the associated skb has been freed via skb cow head(). This can lead to a system crash. The issue was discovered during kernel self-testing using KASAN.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Use After Free

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2025-13511
CVE-2025-38476
DLA-4327-1
DLA-4328-1
DSA-5973-1
DSA-5975-1
ECHO-C8AB-EEF8-5798
MGASA-2025-0218
MGASA-2025-0219
OESA-2026-1950
OPENSUSE-SU-2025:20081-1
SUSE-SU-2025:02853-1
SUSE-SU-2025:02923-1
SUSE-SU-2025:02969-1
SUSE-SU-2025:02996-1
SUSE-SU-2025:02997-1
SUSE-SU-2025:03011-1
SUSE-SU-2025:03023-1
SUSE-SU-2025:03628-1
SUSE-SU-2025:20577-1
SUSE-SU-2025:20586-1
SUSE-SU-2025:20601-1
SUSE-SU-2025:20602-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025:3716-1
SUSE-SU-2025:4135-1
SUSE-SU-2025:4149-1
SUSE-SU-2025:4188-1
SUSE-SU-2025:4320-1
SUSE-SU-2025_02853-1
SUSE-SU-2025_02969-1
SUSE-SU-2025_02996-1
SUSE-SU-2025_02997-1
SUSE-SU-2025_03011-1
SUSE-SU-2025_03023-1
SUSE-SU-2026:0144-1
SUSE-SU-2026:0148-1
SUSE-SU-2026:0163-1
SUSE-SU-2026:0166-1
SUSE-SU-2026:0168-1
SUSE-SU-2026:0171-1
SUSE-SU-2026:0173-1
SUSE-SU-2026:0174-1
SUSE-SU-2026:0176-1
SUSE-SU-2026:0180-1
SUSE-SU-2026:0184-1
SUSE-SU-2026:0186-1
SUSE-SU-2026:0187-1
SUSE-SU-2026:0188-1
SUSE-SU-2026:0191-1
SUSE-SU-2026:0206-1
SUSE-SU-2026:0246-1
SUSE-SU-2026:0262-1
SUSE-SU-2026:0269-1
SUSE-SU-2026:0270-1
SUSE-SU-2026:0274-1
SUSE-SU-2026:0283-1
SUSE-SU-2026:0284-1
SUSE-SU-2026:20248-1
SUSE-SU-2026:20249-1
SUSE-SU-2026:20250-1
SUSE-SU-2026:20251-1
SUSE-SU-2026:20252-1
SUSE-SU-2026:20253-1
SUSE-SU-2026:20255-1
SUSE-SU-2026:20256-1
SUSE-SU-2026:20257-1
SUSE-SU-2026:20258-1
SUSE-SU-2026:20259-1
SUSE-SU-2026:20265-1
SUSE-SU-2026:20266-1
SUSE-SU-2026:20376-1
SUSE-SU-2026:20377-1
SUSE-SU-2026:20378-1
SUSE-SU-2026:20379-1
SUSE-SU-2026:20380-1
SUSE-SU-2026:20385-1
SUSE-SU-2026:20392-1
SUSE-SU-2026:20393-1
SUSE-SU-2026:20394-1
SUSE-SU-2026:20395-1
SUSE-SU-2026:20396-1
SUSE-SU-2026:20397-1
SUSE-SU-2026:20400-1
USN-7879-1
USN-7879-2
USN-7879-3
USN-7879-4
USN-7880-1
USN-7909-1
USN-7909-2
USN-7909-3
USN-7909-4
USN-7909-5
USN-7910-1
USN-7910-2
USN-7933-1
USN-7934-1
USN-7938-1
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu