Memory Leak Vulnerability in Linux Kernel Affecting ACPI Functionality
CVE-2025-38345

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 10 July 2025

What is CVE-2025-38345?

A memory leak has been identified in the Linux kernel related to the ACPI subsystem, specifically during cases of early termination due to malicious ACPI tables. This issue arises when the kernel attempts to terminate the ACPI function while a cache leak occurs, leading to improper stack pointer calculations. As a result, the acpi_ds_obj_stack_pop_and_delete() function does not handle the stack correctly, causing an ACPI operand memory leak. This vulnerability poses a security risk, especially on older kernel versions (<= 4.9), as it may reveal kernel function memory locations in stack dumps, potentially allowing malicious users to bypass kernel Address Space Layout Randomization (ASLR). A patch has been proposed to address the ACPI operand cache leak and enhance system security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch