CVE-2025-38236 | Linux Kernel up to 6.1.142/6.6.95/6.12.35/6.15.4/6.16-rc3 af_unix net/unix/af_unix.c unix_stream_read_generic use after free

Inserito da Angelo Barbosa | Lug 8, 2025 | CVE

A vulnerability was found in Linux Kernel up to 6.1.142/6.6.95/6.12.35/6.15.4/6.16-rc3. It has been classified as critical. Affected is the function unix_stream_read_generic of the file net/unix/af_unix.c of the component af_unix. The manipulation leads to use after free.

This vulnerability is traded as CVE-2025-38236. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-38236 | Linux Kernel up to 6.1.142/6.6.95/6.12.35/6.15.4/6.16-rc3 af_unix net/unix/af_unix.c unix_stream_read_generic use after free

Post correlati

CVE-2023-50197 | Intel Driver & Support Assistant link following (ZDI-23-1773)

CVE-2025-7209 | 9fans plan9port up to 9da5b44 src/libsec/port/x509.c value_decode null pointer dereference (Issue 711)

CVE-2022-49509 | Linux Kernel up to 5.15.45/5.17.13/5.18.2 max9286 Module max9286_init state issue

CVE-2023-36629 | ST ST54-android-packages-apps-Nfc prior 130-20230215-23W07p0 on Android out-of-bounds