VulnerAlert



LINUX
03-07-2025 06:20

CVE-2025-38112 Vulnerabilidad documentada

Sin puntuación
Tags
#kernel
#linux
#vulnerability
#issue
#fix
Descripción
In the Linux kernel, following vulnerability has been resolved: net: Fix TOCTOU issue in sk_is_readable() sk->sk_prot->sock_is_readable is a valid function pointer when sk resides in sockmap. After last sk_psock_put() (which usually happens when socket removed from sockmap), sk->sk_prot gets restored and sk->sk_prot->sock_is_readable becomes NULL. This makes sk_is_readable() racy, if value of reloaded after initial check. Which turn may lead to null pointer dereference. Ensure does not NULL after
https://git.kernel.org/stable/c/1b367ba2f94251822577daed031d6b9a9e11ba91
https://git.kernel.org/stable/c/1e0de7582ceccbdbb227d4e0ddf65732f92526da
https://git.kernel.org/stable/c/2660a544fdc0940bba15f70508a46cf9a6491230
https://git.kernel.org/stable/c/6fa68d7eab34d448a61aa24ea31e68b3231ed20d
https://git.kernel.org/stable/c/8926a7ef1977a832dd6bf702f1a99303dbf15b15
https://git.kernel.org/stable/c/c2b26638476baee154920bb587fc94ff1bf04336
https://git.kernel.org/stable/c/ff55c85a923e043d59d26b20a673a1b4a219c310
Referencia
Link externo
Ver detalles

Fuente
https://nvd.nist.gov/vuln/detail/CVE-2025-38112
Resultados similares
Coincidentes en almenos en 50% de los tags
03-07-2025 CVE-2025-38129
In the Linux kernel, the following vulnerability has been resolved: page_pool: Fix use-after-f...
Ver información
03-07-2025 CVE-2025-38117
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Protect m...
Ver información
Icons made by Freepik from www.flaticon.com
Este Proyecto fue cofinanciado por el Consejo Nacional de Ciencia y Tecnología (CONACYT) a través del PROINNOVA 2021/2023
Proyecto realizado por