CVE-2025-38653
published 2025-08-22CVE-2025-38653: In the Linux kernel, the following vulnerability has been resolved: proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al Check…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
In the Linux kernel, the following vulnerability has been resolved:
proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al
Check pde->proc_ops->proc_lseek directly may cause UAF in rmmod scenario.
It's a gap in proc_reg_open() after commit 654b33ada4ab("proc: fix UAF in
proc_get_inode()"). Followed by AI Viro's suggestion, fix it in same
manner.
Affected
30 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | linux | < linux 6.1.148-1 (bookworm) | linux 6.1.148-1 (bookworm) |
| debian | linux-6.1 | < linux 6.1.148-1 (bookworm) | linux 6.1.148-1 (bookworm) |
| linux | linux | — | — |
| linux | linux | >= 3f61631d47f115b83c935d0039f95cb68b0c8ab7 < c35b0feb80b48720dfbbf4e33759c7be3faaebb6 | c35b0feb80b48720dfbbf4e33759c7be3faaebb6 |
| linux | linux | >= 3f61631d47f115b83c935d0039f95cb68b0c8ab7 < 33c778ea0bd0fa62ff590497e72562ff90f82b13 | 33c778ea0bd0fa62ff590497e72562ff90f82b13 |
| linux | linux | >= 3f61631d47f115b83c935d0039f95cb68b0c8ab7 < fc1072d934f687e1221d685cf1a49a5068318f34 | fc1072d934f687e1221d685cf1a49a5068318f34 |
| linux | linux | >= 3f61631d47f115b83c935d0039f95cb68b0c8ab7 < d136502e04d8853a9aecb335d07bbefd7a1519a8 | d136502e04d8853a9aecb335d07bbefd7a1519a8 |
| linux | linux | >= 3f61631d47f115b83c935d0039f95cb68b0c8ab7 < 1fccbfbae1dd36198dc47feac696563244ad81d3 | 1fccbfbae1dd36198dc47feac696563244ad81d3 |
| linux | linux | >= 3f61631d47f115b83c935d0039f95cb68b0c8ab7 < ff7ec8dc1b646296f8d94c39339e8d3833d16c05 | ff7ec8dc1b646296f8d94c39339e8d3833d16c05 |
| linux | linux_kernel | >= 0 < 6.1.148-1 | 6.1.148-1 |
| linux | linux_kernel | >= 0 < 6.12.43-1 | 6.12.43-1 |
| linux | linux_kernel | >= 0 < 6.16.3-1 | 6.16.3-1 |
| linux | linux_kernel | >= 0 < 6.8.0-100.100 | 6.8.0-100.100 |
| linux | linux_kernel | >= 6.0 < 6.1.148 | 6.1.148 |
| linux | linux_kernel | >= 6.13 < 6.15.10 | 6.15.10 |
| linux | linux_kernel | >= 6.16 < 6.16.1 | 6.16.1 |
| linux | linux_kernel | >= 6.2 < 6.6.102 | 6.6.102 |
| linux | linux_kernel | >= 6.7 < 6.12.42 | 6.12.42 |
| msrc | azl3_kernel_6.6.96.2-1_on_azure_linux_3.0 | — | — |
| msrc | azl3_kernel_6.6.96.2-2_on_azure_linux_3.0 | — | — |
| ubuntu | linux-aws | — | — |
| ubuntu | linux-aws-6.8 | — | — |
| ubuntu | linux-gkeop | — | — |
| ubuntu | linux-nvidia | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH