U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database
  1. Vulnerabilities

CVE-2025-38212 Detail

Description

In the Linux kernel, the following vulnerability has been resolved: ipc: fix to protect IPCS lookups using RCU syzbot reported that it discovered a use-after-free vulnerability, [0] [0]: https://lore.kernel.org/all/[email protected]/ idr_for_each() is protected by rwsem, but this is not enough. If it is not protected by RCU read-critical region, when idr_for_each() calls radix_tree_node_free() through call_rcu() to free the radix_tree_node structure, the node will be freed immediately, and when reading the next node in radix_tree_for_each_slot(), the already freed memory may be read. Therefore, we need to add code to make sure that idr_for_each() is protected within the RCU read-critical region when we call it in shm_destroy_orphaned().


Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.
CVSS 4.0 Severity and Vector Strings:

NIST CVSS score
NIST: NVD
N/A
NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

URL Source(s) Tag(s)
https://cert-portal.siemens.com/productcert/html/ssa-082556.html siemens-SADP
https://git.kernel.org/stable/c/5180561afff8e0f029073c8c8117c95c6512d1f9 kernel.org Patch 
https://git.kernel.org/stable/c/5f1e1573bf103303944fd7225559de5d8297539c kernel.org Patch 
https://git.kernel.org/stable/c/68c173ea138b66d7dd1fd980c9bc578a18e11884 kernel.org Patch 
https://git.kernel.org/stable/c/74bc813d11c30e28fc5261dc877cca662ccfac68 kernel.org Patch 
https://git.kernel.org/stable/c/78297d53d3878d43c1d627d20cd09f611fa4b91d kernel.org Patch 
https://git.kernel.org/stable/c/b0b6bf90ce2699a574b3683e22c44d0dcdd7a057 kernel.org Patch 
https://git.kernel.org/stable/c/b968ba8bfd9f90914957bbbd815413bf6a98eca7 kernel.org Patch 
https://git.kernel.org/stable/c/d66adabe91803ef34a8b90613c81267b5ded1472 kernel.org Patch 
https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html CVE Mailing List  Third Party Advisory 
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html CVE Mailing List  Third Party Advisory 

Weakness Enumeration

CWE-ID CWE Name Source
CWE-416 Use After Free cwe source acceptance level NIST  

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

4 change records found show changes

Quick Info

CVE Dictionary Entry:
CVE-2025-38212
NVD Published Date:
07/04/2025
NVD Last Modified:
05/12/2026
Source:
kernel.org