VYPR
Unrated severityNVD Advisory· Published Oct 13, 2025

crypto: af_alg - Disallow concurrent writes in af_alg_sendmsg

CVE-2025-39964

Description

In the Linux kernel, the following vulnerability has been resolved:

crypto: af_alg - Disallow concurrent writes in af_alg_sendmsg

Issuing two writes to the same af_alg socket is bogus as the data will be interleaved in an unpredictable fashion. Furthermore, concurrent writes may create inconsistencies in the internal socket state.

Disallow this by adding a new ctx->write field that indiciates exclusive ownership for writing.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

108

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.