{ "document": { "aggregate_severity": { "text": "Important" }, "category": "csaf_vex", "csaf_version": "2.0", "distribution": { "text": "TuxCare License Agreement", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Cloud Linux Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://tuxcare.com/contact/", "name": "TuxCare", "namespace": "https://tuxcare.com/" }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://security.tuxcare.com/csaf/v2/els_os/centos8.5els/vex/2025/cve-2025-38052-els_os-centos8_5els.json" } ], "title": "Security update on CVE-2025-38052", "tracking": { "current_release_date": "2025-12-23T22:15:38Z", "generator": { "date": "2025-12-23T22:15:38Z", "engine": { "name": "pyCSAF" } }, "id": "CVE-2025-38052-ELS_OS-CENTOS8.5ELS", "initial_release_date": "2025-06-18T00:00:00Z", "revision_history": [ { "date": "2025-06-18T00:00:00Z", "number": "1", "summary": "Initial version" }, { "date": "2025-09-15T18:58:12Z", "number": "2", "summary": "Official Publication" }, { "date": "2025-12-23T22:15:38Z", "number": "3", "summary": "Update document" } ], "status": "final", "version": "2" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Community Enterprise Operating System 8.5", "product": { "name": "Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5", "product_identification_helper": { "cpe": "cpe:2.3:o:centos:centos:8.5:*:*:*:*:*:*:*" } } } ], "category": "product_family", "name": "Community Enterprise Operating System" } ], "category": "vendor", "name": "Red Hat, Inc." }, { "branches": [ { "branches": [ { "category": "product_version", "name": "kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-tools-libs-devel@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-tools-libs@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-debug-modules-extra@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-debug-modules-internal@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-headers@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-modules@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-tools@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-cross-headers@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-modules-extra@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-devel@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-modules-internal@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "bpftool-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "bpftool-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "bpftool-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/bpftool@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-selftests-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-selftests-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-selftests-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-selftests-internal@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-debug-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-debug-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-debug-core@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-debug-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-debug-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-debug-devel@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/perf@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-debug-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-debug-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-debug-modules@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "python3-perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "python3-perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "python3-perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/python3-perf@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-ipaclones-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-ipaclones-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-ipaclones-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-ipaclones-internal@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-core@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-debug-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-debug-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-debug-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel-debug@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } }, { "category": "product_version", "name": "kernel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product": { "name": "kernel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_id": "kernel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/kernel@4.18.0-348.7.1.el8_5.tuxcare.els31?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" } ], "category": "vendor", "name": "CloudLinux" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "bpftool-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:bpftool-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "bpftool-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-selftests-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-selftests-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-selftests-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-debug-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-debug-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-debug-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-debug-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-debug-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-debug-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "python3-perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:python3-perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "python3-perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-ipaclones-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-ipaclones-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-ipaclones-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-debug-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-debug-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-debug-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" }, { "category": "default_component_of", "full_product_name": { "name": "kernel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64 as a component of Community Enterprise Operating System 8.5", "product_id": "CentOS-8.5:kernel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" }, "product_reference": "kernel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "relates_to_product_reference": "CentOS-8.5" } ] }, "vulnerabilities": [ { "cve": "CVE-2025-38052", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "description", "text": "In the Linux kernel, the following vulnerability has been resolved:\nnet/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done\nSyzbot reported a slab-use-after-free with the following call trace:\n==================================================================\nBUG: KASAN: slab-use-after-free in tipc_aead_encrypt_done+0x4bd/0x510 net/tipc/crypto.c:840\nRead of size 8 at addr ffff88807a733000 by task kworker/1:0/25\nCall Trace:\nkasan_report+0xd9/0x110 mm/kasan/report.c:601\ntipc_aead_encrypt_done+0x4bd/0x510 net/tipc/crypto.c:840\ncrypto_request_complete include/crypto/algapi.h:266\naead_request_complete include/crypto/internal/aead.h:85\ncryptd_aead_crypt+0x3b8/0x750 crypto/cryptd.c:772\ncrypto_request_complete include/crypto/algapi.h:266\ncryptd_queue_worker+0x131/0x200 crypto/cryptd.c:181\nprocess_one_work+0x9fb/0x1b60 kernel/workqueue.c:3231\nAllocated by task 8355:\nkzalloc_noprof include/linux/slab.h:778\ntipc_crypto_start+0xcc/0x9e0 net/tipc/crypto.c:1466\ntipc_init_net+0x2dd/0x430 net/tipc/core.c:72\nops_init+0xb9/0x650 net/core/net_namespace.c:139\nsetup_net+0x435/0xb40 net/core/net_namespace.c:343\ncopy_net_ns+0x2f0/0x670 net/core/net_namespace.c:508\ncreate_new_namespaces+0x3ea/0xb10 kernel/nsproxy.c:110\nunshare_nsproxy_namespaces+0xc0/0x1f0 kernel/nsproxy.c:228\nksys_unshare+0x419/0x970 kernel/fork.c:3323\n__do_sys_unshare kernel/fork.c:3394\nFreed by task 63:\nkfree+0x12a/0x3b0 mm/slub.c:4557\ntipc_crypto_stop+0x23c/0x500 net/tipc/crypto.c:1539\ntipc_exit_net+0x8c/0x110 net/tipc/core.c:119\nops_exit_list+0xb0/0x180 net/core/net_namespace.c:173\ncleanup_net+0x5b7/0xbf0 net/core/net_namespace.c:640\nprocess_one_work+0x9fb/0x1b60 kernel/workqueue.c:3231\nAfter freed the tipc_crypto tx by delete namespace, tipc_aead_encrypt_done\nmay still visit it in cryptd_queue_worker workqueue.\nI reproduce this issue by:\nip netns add ns1\nip link add veth1 type veth peer name veth2\nip link set veth1 netns ns1\nip netns exec ns1 tipc bearer enable media eth dev veth1\nip netns exec ns1 tipc node set key this_is_a_master_key master\nip netns exec ns1 tipc bearer disable media eth dev veth1\nip netns del ns1\nThe key of reproduction is that, simd_aead_encrypt is interrupted, leading\nto crypto_simd_usable() return false. Thus, the cryptd_queue_worker is\ntriggered, and the tipc_crypto tx will be visited.\ntipc_disc_timeout\ntipc_bearer_xmit_skb\ntipc_crypto_xmit\ntipc_aead_encrypt\ncrypto_aead_encrypt\n// encrypt()\nsimd_aead_encrypt\n// crypto_simd_usable() is false\nchild = &ctx->cryptd_tfm->base;\nsimd_aead_encrypt\ncrypto_aead_encrypt\n// encrypt()\ncryptd_aead_encrypt_enqueue\ncryptd_aead_enqueue\ncryptd_enqueue_request\n// trigger cryptd_queue_worker\nqueue_work_on(smp_processor_id(), cryptd_wq, &cpu_queue->work)\nFix this by holding net reference count before encrypt.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "CentOS-8.5:kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:bpftool-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-selftests-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-debug-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-debug-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-debug-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:python3-perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-ipaclones-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-debug-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-38052" } ], "release_date": "2025-06-18T00:00:00", "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "CentOS-8.5:kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:bpftool-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-selftests-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-debug-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-debug-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-debug-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:python3-perf-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-ipaclones-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-core-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-debug-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64", "CentOS-8.5:kernel-0:4.18.0-348.7.1.el8_5.tuxcare.els31.x86_64" ] } ], "threats": [ { "category": "impact", "details": "High" } ] } ] }