Use-After-Free Vulnerability in Linux Kernel's XFRM Interface
CVE-2025-38500

7.8HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 12 August 2025

What is CVE-2025-38500?

The Linux kernel contains a vulnerability in the xfrm interface that can result in a use-after-free condition. This issue arises when the collect_md property is incorrectly handled post-device creation, allowing for the potential of a double free scenario during net namespace teardown. The inadequate enforcement of checks in the changelink function leads to this vulnerability, which could trigger critical errors and unexpected kernel behavior. It's essential for users to apply the latest patches to mitigate any risks associated with this vulnerability.

Affected Version(s)

Linux abc340b38ba25cd6c7aa2c0bd9150d30738c82d0

Linux abc340b38ba25cd6c7aa2c0bd9150d30738c82d0 < 5918c3f4800a3aef2173865e5903370f21e24f47

References

https://git.kernel.org/stable/c/a8d4748b954584ab7bd800f1a...

https://git.kernel.org/stable/c/bfebdb85496e1da21d3cf05de...

https://git.kernel.org/stable/c/5918c3f4800a3aef2173865e5...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 12, 2025
Vulnerability Reserved
Apr 16, 2025

JSON