Memory Allocation Flaw in the Linux Kernel Affecting Crypto Operations
CVE-2025-39789

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 11 September 2025

What is CVE-2025-39789?

A vulnerability in the Linux kernel's cryptographic functions arises from inadequate error checking during memory allocation in the skcipher_walk routines. Without proper validation, memory allocation failures might not be handled appropriately, leading to undefined behavior and stability issues. This oversight necessitates immediate remediation to ensure robust security and reliable operation of cryptographic functionalities.

Affected Version(s)

Linux 1d373d4e8e15b358f08de52956b32e0e38a11f84 < 475104178f4d30e749ee4f5473c87f692b93bebb

Linux 1d373d4e8e15b358f08de52956b32e0e38a11f84 < 3d9eb180fbe8828cce43bce4c370124685b205c3

Linux 4.18

References

https://git.kernel.org/stable/c/475104178f4d30e749ee4f547...

https://git.kernel.org/stable/c/3d9eb180fbe8828cce43bce4c...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 11, 2025
Vulnerability Reserved
Apr 16, 2025