{"id":"CVE-2025-38079","summary":"crypto: algif_hash - fix double free in hash_accept","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: algif_hash - fix double free in hash_accept\n\nIf accept(2) is called on socket type algif_hash with\nMSG_MORE flag set and crypto_ahash_import fails,\nsk2 is freed. However, it is also freed in af_alg_release,\nleading to slab-use-after-free error.","modified":"2026-04-03T13:14:43.780400Z","published":"2025-06-18T09:33:53.251Z","related":["ALSA-2025:12752","ALSA-2025:12753","ALSA-2025:13602","SUSE-SU-2025:02249-1","SUSE-SU-2025:02254-1","SUSE-SU-2025:02307-1","SUSE-SU-2025:02333-1","SUSE-SU-2025:02335-1","SUSE-SU-2025:02538-1","SUSE-SU-2025:02588-1","SUSE-SU-2025:02820-1","SUSE-SU-2025:02821-1","SUSE-SU-2025:02827-1","SUSE-SU-2025:02830-1","SUSE-SU-2025:02832-1","SUSE-SU-2025:02833-1","SUSE-SU-2025:02834-1","SUSE-SU-2025:02844-1","SUSE-SU-2025:02844-2","SUSE-SU-2025:02846-1","SUSE-SU-2025:02848-1","SUSE-SU-2025:02849-1","SUSE-SU-2025:02850-1","SUSE-SU-2025:02851-1","SUSE-SU-2025:02852-1","SUSE-SU-2025:02854-1","SUSE-SU-2025:02857-1","SUSE-SU-2025:02858-1","SUSE-SU-2025:02859-1","SUSE-SU-2025:02860-1","SUSE-SU-2025:02875-1","SUSE-SU-2025:02876-1","SUSE-SU-2025:02878-1","SUSE-SU-2025:02883-1","SUSE-SU-2025:02894-1","SUSE-SU-2025:02897-1","SUSE-SU-2025:02902-1","SUSE-SU-2025:02908-1","SUSE-SU-2025:02909-1","SUSE-SU-2025:02911-1","SUSE-SU-2025:02917-1","SUSE-SU-2025:02918-1","SUSE-SU-2025:02923-1","SUSE-SU-2025:02926-1","SUSE-SU-2025:02930-1","SUSE-SU-2025:02932-1","SUSE-SU-2025:02933-1","SUSE-SU-2025:02934-1","SUSE-SU-2025:02936-1","SUSE-SU-2025:02937-1","SUSE-SU-2025:02942-1","SUSE-SU-2025:02945-1","SUSE-SU-2025:02955-1","SUSE-SU-2025:20475-1","SUSE-SU-2025:20483-1","SUSE-SU-2025:20493-1","SUSE-SU-2025:20498-1","SUSE-SU-2025:20633-1","SUSE-SU-2025:20634-1","SUSE-SU-2025:20635-1","SUSE-SU-2025:20636-1","SUSE-SU-2025:20637-1","SUSE-SU-2025:20638-1","SUSE-SU-2025:20639-1","SUSE-SU-2025:20640-1","SUSE-SU-2025:20641-1","SUSE-SU-2025:20642-1","SUSE-SU-2025:20643-1","SUSE-SU-2025:20644-1","SUSE-SU-2025:20645-1","SUSE-SU-2025:20646-1","SUSE-SU-2025:20648-1","SUSE-SU-2025:20676-1","SUSE-SU-2025:20677-1","SUSE-SU-2025:20678-1","SUSE-SU-2025:20679-1","SUSE-SU-2025:20680-1","SUSE-SU-2025:20681-1","SUSE-SU-2025:20682-1","SUSE-SU-2025:20684-1","SUSE-SU-2025:20685-1","SUSE-SU-2025:20686-1","SUSE-SU-2025:20687-1","SUSE-SU-2025:20688-1","SUSE-SU-2025:20689-1","SUSE-SU-2025:4123-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38079.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/0346f4b742345d1c733c977f3a7aef5a6419a967"},{"type":"WEB","url":"https://git.kernel.org/stable/c/134daaba93193df9e988524b5cd2f52d15eb1993"},{"type":"WEB","url":"https://git.kernel.org/stable/c/2f45a8d64fb4ed4830a4b3273834ecd6ca504896"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5bff312b59b3f2a54ff504e4f4e47272b64f3633"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b2df03ed4052e97126267e8c13ad4204ea6ba9b6"},{"type":"WEB","url":"https://git.kernel.org/stable/c/bf7bba75b91539e93615f560893a599c1e1c98bf"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c3059d58f79fdfb2201249c2741514e34562b547"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f0f3d09f53534ea385d55ced408f2b67059b16e4"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38079.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-38079"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"fe869cdb89c95d060c77eea20204d6c91f233b53"},{"fixed":"5bff312b59b3f2a54ff504e4f4e47272b64f3633"},{"fixed":"bf7bba75b91539e93615f560893a599c1e1c98bf"},{"fixed":"c3059d58f79fdfb2201249c2741514e34562b547"},{"fixed":"f0f3d09f53534ea385d55ced408f2b67059b16e4"},{"fixed":"134daaba93193df9e988524b5cd2f52d15eb1993"},{"fixed":"2f45a8d64fb4ed4830a4b3273834ecd6ca504896"},{"fixed":"0346f4b742345d1c733c977f3a7aef5a6419a967"},{"fixed":"b2df03ed4052e97126267e8c13ad4204ea6ba9b6"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38079.json"}}],"schema_version":"1.7.5"}