Use-After-Free Vulnerability in Linux Kernel's vsock Functionality
CVE-2025-38618

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 22 August 2025

What is CVE-2025-38618?

A vulnerability exists in the Linux kernel's vsock functionality that allows binding to the VMADDR_PORT_ANY, which can lead to a use-after-free condition upon connection. When a socket is bound to VMADDR_PORT_ANY, the socket returned by accept() has the same port but is not considered an unbound socket, resulting in improper reference count management. This issue can potentially be exploited if binding is not adequately restricted. Updates are recommended to modify the binding checks in the vsock implementation to prevent this error.

Affected Version(s)

Linux d021c344051af91f42c5ba9fdedc176740cbd238

Linux d021c344051af91f42c5ba9fdedc176740cbd238 < 44bd006d5c93f6a8f28b106cbae2428c5d0275b7

Linux d021c344051af91f42c5ba9fdedc176740cbd238 < 32950b1907919be86a7a2697d6f93d57068b3865

References

https://git.kernel.org/stable/c/f138be5d7f301fddad4e65ec6...

https://git.kernel.org/stable/c/44bd006d5c93f6a8f28b106cb...

https://git.kernel.org/stable/c/32950b1907919be86a7a2697d...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 22, 2025
Vulnerability Reserved
Apr 16, 2025