CVE-2025-1290

CWE-416Use After Free4 documents4 sources
Severity
8.1HIGH
EPSS
0.3%
top 49.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Google ChromeosGoogle Chrome OS
Timeline
PublishedApr 17

Description

A race condition Use-After-Free vulnerability exists in the virtio_transport_space_update function within the Kernel 5.4 on ChromeOS. Concurrent allocation and freeing of the virtio_vsock_sock structure during an AF_VSOCK connect syscall can occur before a worker thread accesses it resulting in a dangling pointer and potential kernel code execution.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.2 | Impact: 5.9

Affected Packages2 packages

CVEListV5google/chromeos15474.84.015474.84.0
NVDgoogle/chrome_os15474.84.0

🔴Vulnerability Details

2
GHSA
GHSA-rm74-9v34-j945: A race condition Use-After-Free vulnerability exists in the virtio_transport_space_update function within the Kernel 52025-04-17
CVEList
CVE-2025-1290: A race condition Use-After-Free vulnerability exists in the virtio_transport_space_update function within the Kernel 52025-04-17

📋Vendor Advisories

1
Red Hat
kernel: scsi: ufs: core: bsg: Fix crash when arpmb command fails2025-03-27
CVE-2025-1290 (HIGH CVSS 8.1) | A race condition Use-After-Free vul | cvebase.io