CVE-2025-38471

EUVD-2025-22891

28.07.2025, 12:15

In the Linux kernel, the following vulnerability has been resolved:

tls: always refresh the queue when reading sock

After recent changes in net-next TCP compacts skbs much more
aggressively. This unearthed a bug in TLS where we may try
to operate on an old skb when checking if all skbs in the
queue have matching decrypt state and geometry.

    BUG: KASAN: slab-use-after-free in tls_strp_check_rcv+0x898/0x9a0 [tls]
    (net/tls/tls_strp.c:436 net/tls/tls_strp.c:530 net/tls/tls_strp.c:544)
    Read of size 4 at addr ffff888013085750 by task tls/13529

    CPU: 2 UID: 0 PID: 13529 Comm: tls Not tainted 6.16.0-rc5-virtme
    Call Trace:
     kasan_report+0xca/0x100
     tls_strp_check_rcv+0x898/0x9a0 [tls]
     tls_rx_rec_wait+0x2c9/0x8d0 [tls]
     tls_sw_recvmsg+0x40f/0x1aa0 [tls]
     inet_recvmsg+0x1c3/0x1f0

Always reload the queue, fast path is to have the record in the queue
when we wake, anyway (IOW the path going down "if !strp->stm.full_len").

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.8 HIGH	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 7%

Affected Products (NVD)

Vendor	Product	Version
linux	linux_kernel	6.0.6 ≤ 𝑥 < 6.1
linux	linux_kernel	6.1.1 ≤ 𝑥 < 6.1.147
linux	linux_kernel	6.2 ≤ 𝑥 < 6.6.100
linux	linux_kernel	6.7 ≤ 𝑥 < 6.12.40
linux	linux_kernel	6.13 ≤ 𝑥 < 6.15.8
linux	linux_kernel	6.1
linux	linux_kernel	6.1:rc2
linux	linux_kernel	6.1:rc3
linux	linux_kernel	6.1:rc4
linux	linux_kernel	6.1:rc5
linux	linux_kernel	6.1:rc6
linux	linux_kernel	6.1:rc7
linux	linux_kernel	6.1:rc8
linux	linux_kernel	6.16:rc1
linux	linux_kernel	6.16:rc2
linux	linux_kernel	6.16:rc3
linux	linux_kernel	6.16:rc4
linux	linux_kernel	6.16:rc5
linux	linux_kernel	6.16:rc6
debian	debian_linux	11.0

𝑥

= Vulnerable software versions

Early Detection

Affected products identified ahead of NVD analysis through intelligence sources.

Vendor	Product	Version	Source
Siemens	SIMATIC S7-1500 CPU 1518-4 PN\/DP MFP	V3.1.5 ≤ 𝑥 < *	ADP
Siemens	SIMATIC S7-1500 CPU 1518-4 PN\/DP MFP	V3.1.5 ≤ 𝑥 < *	ADP
Siemens	SIMATIC S7-1500 CPU 1518F-4 PN\/DP MFP	V3.1.5 ≤ 𝑥 < *	ADP
Siemens	SIMATIC S7-1500 CPU 1518F-4 PN\/DP MFP	V3.1.5 ≤ 𝑥 < *	ADP
Siemens	SIPLUS S7-1500 CPU 1518-4 PN\/DP MFP	V3.1.5 ≤ 𝑥 < *	ADP

Debian Releases

Debian Product

Codename

linux

bookworm	6.1.170-3 fixed
bookworm (security)	6.1.172-1 fixed
bullseye	5.10.223-1 fixed
bullseye (security)	5.10.251-5 fixed
forky	7.0.7-1 fixed
sid	7.0.7-1 fixed
trixie	6.12.86-1 fixed
trixie (security)	6.12.88-1 fixed

linux-6.1

bullseye (security)

6.1.172-1~deb11u1

fixed

Ubuntu Releases

Ubuntu Product

Codename

linux-hwe

bionic	ignored
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	not-affected

linux-hwe-5.4

bionic	not-affected
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-hwe-5.8

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-hwe-5.11

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-hwe-5.13

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-hwe-5.15

bionic	dne
focal	not-affected
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-hwe-5.19

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-hwe-6.2

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-hwe-6.5

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-hwe-6.8

bionic	dne
focal	dne
jammy	Fixed 6.8.0-100.100~22.04.1 released
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-hwe-6.11

bionic	dne
focal	dne
jammy	dne
noble	ignored
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-hwe-6.14

bionic	dne
focal	dne
jammy	dne
noble	not-affected
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-hwe-edge

bionic	ignored
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	ignored

linux-lts-xenial

bionic	dne
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	not-affected
xenial	dne

linux-kvm

bionic	not-affected
focal	not-affected
jammy	not-affected
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	not-affected

linux-allwinner-5.19

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-aws-5.0

bionic	ignored
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-aws-5.3

bionic	ignored
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-aws-5.4

bionic	not-affected
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-aws-5.8

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-aws-5.11

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-aws-5.13

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-aws-5.15

bionic	dne
focal	not-affected
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-aws-5.19

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-aws-6.2

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-aws-6.5

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-aws-6.8

bionic	dne
focal	dne
jammy	Fixed 6.8.0-1046.49~22.04.1 released
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-aws-6.14

bionic	dne
focal	dne
jammy	dne
noble	Fixed 6.14.0-1017.17~24.04.1 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-aws-hwe

bionic	dne
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	not-affected

linux-azure-4.15

bionic	not-affected
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-5.3

bionic	ignored
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-5.4

bionic	not-affected
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-5.8

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-5.11

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-5.13

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-5.15

bionic	dne
focal	not-affected
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-5.19

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-6.2

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-6.5

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-6.8

bionic	dne
focal	dne
jammy	Fixed 6.8.0-1051.57~22.04.1 released
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-6.11

bionic	dne
focal	dne
jammy	dne
noble	ignored
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-fde

bionic	dne
focal	ignored
jammy	not-affected
noble	needed
plucky	ignored
questing	needs-triage
resolute	not-affected
trusty	dne
xenial	dne

linux-azure-fde-5.15

bionic	dne
focal	not-affected
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-fde-5.19

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-fde-6.2

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-nvidia

bionic	dne
focal	dne
jammy	dne
noble	pending
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-bluefield

bionic	dne
focal	not-affected
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-edge

bionic	ignored
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-fips

bionic	not-affected
focal	not-affected
jammy	not-affected
noble	Fixed 6.8.0-100.100+fips1 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	not-affected

linux-aws-fips

bionic	not-affected
focal	not-affected
jammy	not-affected
noble	Fixed 6.8.0-1046.49+fips1 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-fips

bionic	not-affected
focal	not-affected
jammy	not-affected
noble	Fixed 6.8.0-1046.52+fips1 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp-fips

bionic	not-affected
focal	not-affected
jammy	not-affected
noble	Fixed 6.8.0-1047.50+fips1 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp

bionic	ignored
focal	not-affected
jammy	not-affected
noble	Fixed 6.8.0-1047.50 released
plucky	Fixed 6.14.0-1020.21 released
questing	not-affected
resolute	not-affected
trusty	dne
xenial	not-affected

linux-gcp-4.15

bionic	not-affected
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp-5.3

bionic	ignored
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp-5.4

bionic	not-affected
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp-5.8

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp-5.11

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp-5.13

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp-5.15

bionic	dne
focal	not-affected
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp-5.19

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp-6.2

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp-6.5

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp-6.8

bionic	dne
focal	dne
jammy	Fixed 6.8.0-1047.50~22.04.2 released
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp-6.11

bionic	dne
focal	dne
jammy	dne
noble	ignored
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp-6.14

bionic	dne
focal	dne
jammy	dne
noble	Fixed 6.14.0-1020.21~24.04.1 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gke

bionic	dne
focal	ignored
jammy	not-affected
noble	Fixed 6.8.0-1043.48 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	ignored

linux-gke-4.15

bionic	ignored
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gke-5.4

bionic	ignored
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gke-5.15

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gkeop

bionic	dne
focal	ignored
jammy	not-affected
noble	Fixed 6.8.0-1030.33 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gkeop-5.4

bionic	ignored
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gkeop-5.15

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-ibm

bionic	dne
focal	not-affected
jammy	not-affected
noble	Fixed 6.8.0-1044.44 released
plucky	dne
questing	dne
resolute	not-affected
trusty	dne
xenial	dne

linux-ibm-5.4

bionic	not-affected
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-ibm-5.15

bionic	dne
focal	not-affected
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-ibm-6.8

bionic	dne
focal	dne
jammy	Fixed 6.8.0-1044.44~22.04.1 released
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-intel-5.13

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-intel-iotg

bionic	dne
focal	dne
jammy	not-affected
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-intel-iotg-5.15

bionic	dne
focal	not-affected
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-iot

bionic	dne
focal	not-affected
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-intel-iot-realtime

bionic	dne
focal	dne
jammy	not-affected
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-lowlatency

bionic	dne
focal	dne
jammy	not-affected
noble	Fixed 6.8.0-100.100.1 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-lowlatency-hwe-5.15

bionic	dne
focal	not-affected
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-lowlatency-hwe-5.19

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-lowlatency-hwe-6.2

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-lowlatency-hwe-6.5

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-lowlatency-hwe-6.8

bionic	dne
focal	dne
jammy	Fixed 6.8.0-100.100.1~22.04.1 released
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-lowlatency-hwe-6.11

bionic	dne
focal	dne
jammy	dne
noble	ignored
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-nvidia

bionic	dne
focal	dne
jammy	not-affected
noble	Fixed 6.8.0-1046.49 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-nvidia-6.2

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-nvidia-6.5

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-nvidia-6.8

bionic	dne
focal	dne
jammy	Fixed 6.8.0-1046.49~22.04.1 released
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-nvidia-lowlatency

bionic	dne
focal	dne
jammy	dne
noble	Fixed 6.8.0-1046.49.1 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-nvidia-tegra

bionic	dne
focal	dne
jammy	not-affected
noble	Fixed 6.8.0-1020.20 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-nvidia-tegra-5.15

bionic	dne
focal	not-affected
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-nvidia-tegra-igx

bionic	dne
focal	dne
jammy	not-affected
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oracle-5.0

bionic	ignored
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oracle-5.3

bionic	ignored
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oracle-5.4

bionic	not-affected
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oracle-5.8

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oracle-5.11

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oracle-5.13

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oracle-5.15

bionic	dne
focal	not-affected
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oracle-6.5

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oracle-6.8

bionic	dne
focal	dne
jammy	Fixed 6.8.0-1043.44~22.04.1 released
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oracle-6.14

bionic	dne
focal	dne
jammy	dne
noble	Fixed 6.14.0-1017.17~24.04.1 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oem

bionic	ignored
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	ignored

linux-oem-5.6

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oem-5.10

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oem-5.13

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oem-5.14

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oem-5.17

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oem-6.0

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oem-6.1

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oem-6.5

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oem-6.8

bionic	dne
focal	dne
jammy	dne
noble	ignored
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oem-6.11

bionic	dne
focal	dne
jammy	dne
noble	ignored
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oem-6.14

bionic	dne
focal	dne
jammy	dne
noble	Fixed 6.14.0-1016.16 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-raspi2

bionic	ignored
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	ignored

linux-raspi-5.4

bionic	not-affected
focal	dne
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-raspi-realtime

bionic	dne
focal	dne
jammy	dne
noble	Fixed 6.8.0-2037.38 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-riscv

bionic	dne
focal	ignored
jammy	ignored
noble	ignored
plucky	Fixed 6.14.0-36.36.1 released
questing	not-affected
resolute	not-affected
trusty	dne
xenial	dne

linux-riscv-5.8

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-riscv-5.11

bionic	dne
focal	ignored
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-riscv-5.15

bionic	dne
focal	not-affected
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-riscv-5.19

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-riscv-6.5

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-riscv-6.8

bionic	dne
focal	dne
jammy	Fixed 6.8.0-100.100~22.04.1 released
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-riscv-6.14

bionic	dne
focal	dne
jammy	dne
noble	Fixed 6.14.0-36.36.1~24.04.1 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-starfive-5.19

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-starfive-6.2

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-starfive-6.5

bionic	dne
focal	dne
jammy	ignored
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-xilinx-zynqmp

bionic	dne
focal	not-affected
jammy	not-affected
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux

bionic	not-affected
focal	not-affected
jammy	not-affected
noble	Fixed 6.8.0-100.100 released
plucky	Fixed 6.14.0-36.36 released
questing	not-affected
resolute	not-affected
trusty	not-affected
xenial	not-affected

linux-aws

bionic	not-affected
focal	not-affected
jammy	not-affected
noble	Fixed 6.8.0-1046.49 released
plucky	Fixed 6.14.0-1017.17 released
questing	not-affected
resolute	not-affected
trusty	not-affected
xenial	not-affected

linux-azure

bionic	ignored
focal	not-affected
jammy	not-affected
noble	Fixed 6.8.0-1046.52 released
plucky	Fixed 6.14.0-1017.17 released
questing	not-affected
resolute	not-affected
trusty	not-affected
xenial	not-affected

linux-oracle

bionic	not-affected
focal	not-affected
jammy	not-affected
noble	Fixed 6.8.0-1043.44 released
plucky	Fixed 6.14.0-1017.17 released
questing	not-affected
resolute	not-affected
trusty	dne
xenial	not-affected

linux-raspi

bionic	dne
focal	not-affected
jammy	not-affected
noble	Fixed 6.8.0-1047.51 released
plucky	Fixed 6.14.0-1018.18 released
questing	not-affected
resolute	not-affected
trusty	dne
xenial	dne

linux-realtime

bionic	dne
focal	dne
jammy	not-affected
noble	Fixed 6.8.1-1041.42 released
plucky	Fixed 6.14.0-1016.16 released
questing	not-affected
resolute	not-affected
trusty	dne
xenial	dne

linux-intel

bionic	dne
focal	dne
jammy	dne
noble	ignored
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-nvidia-6.11

bionic	dne
focal	dne
jammy	dne
noble	ignored
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-realtime-6.14

bionic	dne
focal	dne
jammy	dne
noble	Fixed 6.14.0-1016.16~24.04.1 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-realtime-6.8

bionic	dne
focal	dne
jammy	Fixed 6.8.1-1041.42~22.04.1 released
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-6.14

bionic	dne
focal	dne
jammy	dne
noble	Fixed 6.14.0-1017.17~24.04.1 released
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-fde-6.14

bionic	dne
focal	dne
jammy	dne
noble	needed
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-nvidia-6.14

bionic	dne
focal	dne
jammy	dne
noble	pending
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-xilinx

bionic	dne
focal	dne
jammy	dne
noble	Fixed 6.8.0-1023.24 released
plucky	ignored
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oem-6.17

bionic	dne
focal	dne
jammy	dne
noble	not-affected
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-fde-6.8

bionic	dne
focal	dne
jammy	needed
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-aws-6.17

bionic	dne
focal	dne
jammy	dne
noble	not-affected
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-gcp-6.17

bionic	dne
focal	dne
jammy	dne
noble	not-affected
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-hwe-6.17

bionic	dne
focal	dne
jammy	dne
noble	not-affected
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-oracle-6.17

bionic	dne
focal	dne
jammy	dne
noble	not-affected
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-riscv-6.17

bionic	dne
focal	dne
jammy	dne
noble	not-affected
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-6.17

bionic	dne
focal	dne
jammy	dne
noble	not-affected
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-azure-fde-6.17

bionic	dne
focal	dne
jammy	dne
noble	needs-triage
questing	dne
resolute	dne
trusty	dne
xenial	dne

linux-realtime-6.17

bionic	dne
focal	dne
jammy	dne
noble	not-affected
questing	dne
resolute	dne
trusty	dne
xenial	dne

openSUSE / SLES Releases

openSUSE Product

Release

kernel-64kb

suse enterprise desktop 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.11.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.11.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.11.1 fixed

kernel-azure

suse enterprise sap 15 SP6	6.4.0-150600.8.48.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.20.11.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.8.48.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.20.11.1 fixed

kernel-default-base

suse enterprise desktop 15 SP6	6.4.0-150600.23.65.1.150600.12.28.4 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.11.1.150700.17.9.4 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.65.1.150600.12.28.4 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.11.1.150700.17.9.4 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.65.1.150600.12.28.4 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.11.1.150700.17.9.4 fixed

kernel-docs

suse enterprise desktop 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.11.3 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.11.3 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.11.3 fixed

kernel-macros

suse enterprise desktop 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.11.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.11.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.11.1 fixed

kernel-obs-build

suse enterprise desktop 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.11.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.11.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.11.1 fixed

kernel-source

suse enterprise desktop 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.11.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.11.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.11.1 fixed

kernel-source-azure

suse enterprise sap 15 SP6	6.4.0-150600.8.48.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.20.11.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.8.48.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.20.11.1 fixed

kernel-syms

suse enterprise desktop 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.11.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.11.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.11.1 fixed

kernel-syms-azure

suse enterprise sap 15 SP6	6.4.0-150600.8.48.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.20.11.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.8.48.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.20.11.1 fixed

kernel-zfcpdump

suse enterprise desktop 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.11.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.11.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.65.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.11.1 fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

kernel

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-64k

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-64k-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-64k-debug

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-64k-debug-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-64k-debug-devel

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-64k-debug-devel-matched

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-64k-debug-modules

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-64k-debug-modules-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-64k-debug-modules-extra

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-64k-devel

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-64k-devel-matched

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-64k-modules

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-64k-modules-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-64k-modules-extra

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-abi-stablelists

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-debug

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-debug-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-debug-devel

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-debug-devel-matched

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-debug-modules

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-debug-modules-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-debug-modules-extra

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-debug-uki-virt

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-devel

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-devel-matched

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-doc

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-modules

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-modules-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-modules-extra

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-64k

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-64k-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-64k-debug

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-64k-debug-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-64k-debug-devel

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-64k-debug-modules

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-64k-debug-modules-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-64k-debug-modules-extra

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-64k-devel

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-64k-modules

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-64k-modules-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-64k-modules-extra

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-debug

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-debug-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-debug-devel

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-debug-kvm

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-debug-modules

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-debug-modules-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-debug-modules-extra

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-devel

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-kvm

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-modules

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-modules-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-rt-modules-extra

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-tools

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-tools-libs

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-tools-libs-devel

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-uki-virt

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-uki-virt-addons

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-zfcpdump

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-zfcpdump-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-zfcpdump-devel

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-zfcpdump-devel-matched

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-zfcpdump-modules

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-zfcpdump-modules-core

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kernel-zfcpdump-modules-extra

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

kpatch-patch-5

RHEL 9

0:1-6.el9_6

fixed

libperf

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

perf

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

python3-perf

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

rtla

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

RHEL 9

0:5.14.0-570.35.1.el9_6

fixed

Common Weakness Enumeration

CWE-416 - Use After Free
Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

References

https://git.kernel.org/stable/c/1f3a429c21e0e43e8b8c55d30701e91411a4df02

https://git.kernel.org/stable/c/4ab26bce3969f8fd925fe6f6f551e4d1a508c68b

https://git.kernel.org/stable/c/730fed2ff5e259495712518e18d9f521f61972bb

https://git.kernel.org/stable/c/c76f6f437c46b2390888e0e1dc7aafafa9f4e0c6

https://git.kernel.org/stable/c/cdb767915fc9a15d88d19d52a1455f1dc3e5ddc8

https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html

https://cert-portal.siemens.com/productcert/html/ssa-082556.html