CVE-2025-38550

HIGH EPSS 4.1%
Published Aug 16, 202510mo ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Aug 16, 2025 10mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: Delay put pmc->idev in mld_del_delrec() pmc->idev is still used in ip6_mc_clear_src(), so as mld_clear_delrec() does, the reference should be put after ip6_mc_clear_src() return.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
4.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 12

VendorProductVersionRange
linuxlinux_kernel*≥5.13  –  <5.15.190
linuxlinux_kernel*≥5.16  –  <6.1.147
linuxlinux_kernel*≥6.2  –  <6.6.100
linuxlinux_kernel*≥6.7  –  <6.12.40
linuxlinux_kernel*≥6.13  –  <6.15.8
linuxlinux_kernel6.16any
linuxlinux_kernel6.16any
linuxlinux_kernel6.16any
linuxlinux_kernel6.16any
linuxlinux_kernel6.16any
linuxlinux_kernel6.16any
debiandebian_linux11.0any

References 7

  • git.kernel.org https://git.kernel.org/stable/c/5f18e0130194550dff734e155029ae734378b5ea
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6e4eec86fe5f6b3fdbc702d1d36ac2a6e7ec0806
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/728db00a14cacb37f36e9382ab5fad55caf890cc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7929d27c747eafe8fca3eecd74a334503ee4c839
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ae3264a25a4635531264728859dbe9c659fad554
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dcbc346f50a009d8b7f4e330f9f2e22d6442fa26
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
    Mailing ListThird Party Advisory

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/5f18e0130194550dff734e155029ae734378b5ea
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6e4eec86fe5f6b3fdbc702d1d36ac2a6e7ec0806
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/728db00a14cacb37f36e9382ab5fad55caf890cc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7929d27c747eafe8fca3eecd74a334503ee4c839
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ae3264a25a4635531264728859dbe9c659fad554
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dcbc346f50a009d8b7f4e330f9f2e22d6442fa26
    Patch