{"id":"CVE-2025-38408","summary":"genirq/irq_sim: Initialize work context pointers properly","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ngenirq/irq_sim: Initialize work context pointers properly\n\nInitialize `ops` member's pointers properly by using kzalloc() instead of\nkmalloc() when allocating the simulation work context. Otherwise the\npointers contain random content leading to invalid dereferencing.","modified":"2026-04-02T12:47:58.874417Z","published":"2025-07-25T13:20:13.253Z","related":["SUSE-SU-2025:03600-1","SUSE-SU-2025:03601-1","SUSE-SU-2025:03602-1","SUSE-SU-2025:03633-1","SUSE-SU-2025:03634-1","SUSE-SU-2025:20851-1","SUSE-SU-2025:20861-1","SUSE-SU-2025:20870-1","SUSE-SU-2025:20898-1","SUSE-SU-2025:21074-1","SUSE-SU-2025:21139-1","SUSE-SU-2025:21179-1","SUSE-SU-2025:3725-1","SUSE-SU-2025:3751-1","openSUSE-SU-2025:20081-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38408.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/186df821de0f34490ed5fc0861243748b2483861"},{"type":"WEB","url":"https://git.kernel.org/stable/c/19bd7597858dd15802c1d99fcc38e528f469080a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7f73d1def72532bac4d55ea8838f457a6bed955c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8a2277a3c9e4cc5398f80821afe7ecbe9bdf2819"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c71aa4bb528ae6f8fd7577a0a39e5a03c60b04fb"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ec3656a8cb428d763def32bc2fa695f94be23629"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38408.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-38408"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"337cbeb2c13eb4cab84f576fd402d7ae4ed31ae1"},{"fixed":"186df821de0f34490ed5fc0861243748b2483861"},{"fixed":"c71aa4bb528ae6f8fd7577a0a39e5a03c60b04fb"},{"fixed":"ec3656a8cb428d763def32bc2fa695f94be23629"},{"fixed":"19bd7597858dd15802c1d99fcc38e528f469080a"},{"fixed":"7f73d1def72532bac4d55ea8838f457a6bed955c"},{"fixed":"8a2277a3c9e4cc5398f80821afe7ecbe9bdf2819"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38408.json"}}],"schema_version":"1.7.5"}