Memory Leak Vulnerability in Linux Kernel Affecting ACPI Functionality
CVE-2025-38345
What is CVE-2025-38345?
A memory leak has been identified in the Linux kernel related to the ACPI subsystem, specifically during cases of early termination due to malicious ACPI tables. This issue arises when the kernel attempts to terminate the ACPI function while a cache leak occurs, leading to improper stack pointer calculations. As a result, the acpi_ds_obj_stack_pop_and_delete() function does not handle the stack correctly, causing an ACPI operand memory leak. This vulnerability poses a security risk, especially on older kernel versions (<= 4.9), as it may reveal kernel function memory locations in stack dumps, potentially allowing malicious users to bypass kernel Address Space Layout Randomization (ASLR). A patch has been proposed to address the ACPI operand cache leak and enhance system security.
Affected Version(s)
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 4fa430a8bca708c7776f6b9d001257f48b19a5b7
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1c0d9115a001979cb446ba5e8331dd1d29a10bbf
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 5a68893b594ee6ce0efce5f74c07e64e9dd0c2c4