PT-2025-32684 · Linux+9 · Linux Kernel+9

Published

2025-07-03

·

Updated

2026-04-20

·

CVE-2025-38500

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.15.0
Description: A use-after-free vulnerability exists in the Linux kernel related to xfrm interfaces and the collect md property. Specifically, the vulnerability occurs when changing an xfrm interface with the collect md property set, potentially leading to a double free when the network namespace is taken down. This issue arises because the check to enforce restrictions on changing collect md interfaces was not consistently applied, allowing an erroneous placement of the special interface in the xfrmi net hash.
Recommendations: Update to Linux kernel version 6.15.0 or later to address this vulnerability.

Exploit

Fix

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2025:15011
ALSA-2025:15782
ALSA-2025_15008
ALSA-2025_15009
ALSA-2025_15011
ALSA-2025_15785
ALSA-2025_15786
ALSA-2025_16372
ALSA-2025_16373
ALSA-2025_16880
ASB-A-436201996
AZL-66246
BDU:2025-15162
CVE-2025-38500
DLA-4328-1
DSA-5975-1
ECHO-6E29-9775-3B78
INFSA-2025_15011
OESA-2025-2120
OESA-2025-2121
OESA-2025-2122
OPENSUSE-SU-2025:20081-1
RHSA-2025_15011
SUSE-SU-2025:03272-1
SUSE-SU-2025:03290-1
SUSE-SU-2025:03301-1
SUSE-SU-2025:03382-1
SUSE-SU-2025:03602-1
SUSE-SU-2025:03633-1
SUSE-SU-2025:03634-1
SUSE-SU-2025:20653-1
SUSE-SU-2025:20669-1
SUSE-SU-2025:20739-1
SUSE-SU-2025:20756-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21085-1
SUSE-SU-2025:21086-1
SUSE-SU-2025:21087-1
SUSE-SU-2025:21088-1
SUSE-SU-2025:21089-1
SUSE-SU-2025:21090-1
SUSE-SU-2025:21091-1
SUSE-SU-2025:21092-1
SUSE-SU-2025:21093-1
SUSE-SU-2025:21094-1
SUSE-SU-2025:21095-1
SUSE-SU-2025:21096-1
SUSE-SU-2025:21097-1
SUSE-SU-2025:21098-1
SUSE-SU-2025:21099-1
SUSE-SU-2025:21100-1
SUSE-SU-2025:21103-1
SUSE-SU-2025:21107-1
SUSE-SU-2025:21108-1
SUSE-SU-2025:21109-1
SUSE-SU-2025:21110-1
SUSE-SU-2025:21111-1
SUSE-SU-2025:21112-1
SUSE-SU-2025:21114-1
SUSE-SU-2025:21116-1
SUSE-SU-2025:21117-1
SUSE-SU-2025:21118-1
SUSE-SU-2025:21119-1
SUSE-SU-2025:21120-1
SUSE-SU-2025:21121-1
SUSE-SU-2025:21122-1
SUSE-SU-2025:21123-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025:4160-1
SUSE-SU-2025:4161-1
SUSE-SU-2025:4164-1
SUSE-SU-2025:4167-1
SUSE-SU-2025:4200-1
SUSE-SU-2025:4201-1
SUSE-SU-2025:4208-1
SUSE-SU-2025:4261-1
SUSE-SU-2025:4262-1
SUSE-SU-2025:4265-1
SUSE-SU-2025:4268-1
SUSE-SU-2025:4269-1
SUSE-SU-2025:4282-1
SUSE-SU-2025:4302-1
SUSE-SU-2025:4306-1
SUSE-SU-2025_03272-1
SUSE-SU-2025_03290-1
SUSE-SU-2025_03301-1
SUSE-SU-2025_03382-1
SUSE-SU-2026:20149-1
SUSE-SU-2026:20164-1
SUSE-SU-2026:20169-1
USN-7791-1
USN-7791-2
USN-7791-3
USN-7791-4
USN-7792-1
USN-7792-2
USN-7792-3
USN-7798-1
USN-7799-1
USN-7800-1
USN-7801-1
USN-7801-2
USN-7801-3
USN-7808-1
USN-7808-2
USN-7809-1
USN-7821-1

Affected Products

Almalinux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu