Acknowledged
Created: Jun 19, 2025
Updated: Jun 20, 2025
Found In Version: 10.23.30.1
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:EOL][EOL]crypto: algif_hash - fix double free in hash_accept[EOL][EOL]If accept(2) is called on socket type algif_hash with[EOL]MSG_MORE flag set and crypto_ahash_import fails,[EOL]sk2 is freed. However, it is also freed in af_alg_release,[EOL]leading to slab-use-after-free error.
CREATE(Triage):(User=lchen-cn) [CVE-2025-38079 (https://nvd.nist.gov/vuln/detail/CVE-2025-38079)
