{"uuid": "9bf9e437-33ca-47a6-893f-e9e035eb8991", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-38079", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18702", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-38079\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: algif_hash - fix double free in hash_accept\n\nIf accept(2) is called on socket type algif_hash with\nMSG_MORE flag set and crypto_ahash_import fails,\nsk2 is freed. However, it is also freed in af_alg_release,\nleading to slab-use-after-free error.\n\ud83d\udccf Published: 2025-06-18T09:33:53.251Z\n\ud83d\udccf Modified: 2025-06-18T09:33:53.251Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/5bff312b59b3f2a54ff504e4f4e47272b64f3633\n2. https://git.kernel.org/stable/c/bf7bba75b91539e93615f560893a599c1e1c98bf\n3. https://git.kernel.org/stable/c/c3059d58f79fdfb2201249c2741514e34562b547\n4. https://git.kernel.org/stable/c/f0f3d09f53534ea385d55ced408f2b67059b16e4\n5. https://git.kernel.org/stable/c/134daaba93193df9e988524b5cd2f52d15eb1993\n6. https://git.kernel.org/stable/c/2f45a8d64fb4ed4830a4b3273834ecd6ca504896\n7. https://git.kernel.org/stable/c/0346f4b742345d1c733c977f3a7aef5a6419a967\n8. https://git.kernel.org/stable/c/b2df03ed4052e97126267e8c13ad4204ea6ba9b6", "creation_timestamp": "2025-06-18T10:40:00.000000Z"}