Use-After-Free Vulnerability in Linux Kernel Affecting Function Tracing
CVE-2025-38346
What is CVE-2025-38346?
A vulnerability in the Linux kernel’s ftrace functionality can lead to a use-after-free condition when modules are removed after tracing is disabled. This occurs specifically when the ftrace_disable flag is triggered after encountering an anomaly, preventing proper cleanup of function tracing information. When a module that has been loaded and has its initialization functions traced is subsequently removed, the still-present module list may lead to attempts to read from memory spaces that have already been freed, triggering potential security risks and system instability.
Affected Version(s)
Linux aba4b5c22cbac296f4081a0476d0c55828f135b4
Linux aba4b5c22cbac296f4081a0476d0c55828f135b4 < 8690cd3258455bbae64f809e1d3ee0f043661c71
Linux aba4b5c22cbac296f4081a0476d0c55828f135b4 < 6805582abb720681dd1c87ff677f155dcf4e86c9