| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <2025081628-CVE-2025-38550-9bfd@gregkh> Date: Sat, 16 Aug 2025 13:34:27 +0200 From: Greg Kroah-Hartman <gregkh@...uxfoundation.org> To: linux-cve-announce@...r.kernel.org Cc: Greg Kroah-Hartman <gregkh@...nel.org> Subject: CVE-2025-38550: ipv6: mcast: Delay put pmc->idev in mld_del_delrec() From: Greg Kroah-Hartman <gregkh@...nel.org> Description =========== In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: Delay put pmc->idev in mld_del_delrec() pmc->idev is still used in ip6_mc_clear_src(), so as mld_clear_delrec() does, the reference should be put after ip6_mc_clear_src() return. The Linux kernel CVE team has assigned CVE-2025-38550 to this issue. Affected and fixed versions =========================== Issue introduced in 5.13 with commit 63ed8de4be81b699ca727e9f8e3344bd487806d7 and fixed in 6.1.147 with commit 728db00a14cacb37f36e9382ab5fad55caf890cc Issue introduced in 5.13 with commit 63ed8de4be81b699ca727e9f8e3344bd487806d7 and fixed in 6.6.100 with commit dcbc346f50a009d8b7f4e330f9f2e22d6442fa26 Issue introduced in 5.13 with commit 63ed8de4be81b699ca727e9f8e3344bd487806d7 and fixed in 6.12.40 with commit 7929d27c747eafe8fca3eecd74a334503ee4c839 Issue introduced in 5.13 with commit 63ed8de4be81b699ca727e9f8e3344bd487806d7 and fixed in 6.15.8 with commit 5f18e0130194550dff734e155029ae734378b5ea Issue introduced in 5.13 with commit 63ed8de4be81b699ca727e9f8e3344bd487806d7 and fixed in 6.16 with commit ae3264a25a4635531264728859dbe9c659fad554 Please see https://www.kernel.org for a full list of currently supported kernel versions by the kernel community. Unaffected versions might change over time as fixes are backported to older supported kernel versions. The official CVE entry at https://cve.org/CVERecord/?id=CVE-2025-38550 will be updated if fixes are backported, please check that for the most up to date information about this issue. Affected files ============== The file(s) affected by this issue are: net/ipv6/mcast.c Mitigation ========== The Linux kernel CVE team recommends that you update to the latest stable kernel version for this, and many other bugfixes. Individual changes are never tested alone, but rather are part of a larger kernel release. Cherry-picking individual commits is not recommended or supported by the Linux kernel community at all. If however, updating to the latest release is impossible, the individual changes to resolve this issue can be found at these commits: https://git.kernel.org/stable/c/728db00a14cacb37f36e9382ab5fad55caf890cc https://git.kernel.org/stable/c/dcbc346f50a009d8b7f4e330f9f2e22d6442fa26 https://git.kernel.org/stable/c/7929d27c747eafe8fca3eecd74a334503ee4c839 https://git.kernel.org/stable/c/5f18e0130194550dff734e155029ae734378b5ea https://git.kernel.org/stable/c/ae3264a25a4635531264728859dbe9c659fad554
Powered by blists - more mailing lists