VYPR
High severity7.8NVD Advisory· Published Jun 18, 2025· Updated May 12, 2026

CVE-2025-38079

CVE-2025-38079

Description

In the Linux kernel, the following vulnerability has been resolved:

crypto: algif_hash - fix double free in hash_accept

If accept(2) is called on socket type algif_hash with MSG_MORE flag set and crypto_ahash_import fails, sk2 is freed. However, it is also freed in af_alg_release, leading to slab-use-after-free error.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

359

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.