{"vulnerability": "CVE-2025-38078", "sightings": [{"uuid": "9eb68e32-f48c-4708-979d-71ca5e2e2f32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-38078", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lruwgzesoc2u", "content": "", "creation_timestamp": "2025-06-18T11:40:54.224964Z"}, {"uuid": "241be006-05db-48d8-a467-313774a92c02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-38078", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18703", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-38078\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Fix race of buffer access at PCM OSS layer\n\nThe PCM OSS layer tries to clear the buffer with the silence data at\ninitialization (or reconfiguration) of a stream with the explicit call\nof snd_pcm_format_set_silence() with runtime->dma_area.  But this may\nlead to a UAF because the accessed runtime->dma_area might be freed\nconcurrently, as it's performed outside the PCM ops.\n\nFor avoiding it, move the code into the PCM core and perform it inside\nthe buffer access lock, so that it won't be changed during the\noperation.\n\ud83d\udccf Published: 2025-06-18T09:33:52.644Z\n\ud83d\udccf Modified: 2025-06-18T09:33:52.644Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/c0e05a76fc727929524ef24a19c302e6dd40233f\n2. https://git.kernel.org/stable/c/8170d8ec4efd0be352c14cb61f374e30fb0c2a25\n3. https://git.kernel.org/stable/c/10217da9644ae75cea7330f902c35fc5ba78bbbf\n4. https://git.kernel.org/stable/c/f3e14d706ec18faf19f5a6e75060e140fea05d4a\n5. https://git.kernel.org/stable/c/74d90875f3d43f3eff0e9861c4701418795d3455\n6. https://git.kernel.org/stable/c/bf85e49aaf3a3c5775ea87369ea5f159c2148db4\n7. https://git.kernel.org/stable/c/afa56c960fcb4db37f2e3399f28e9402e4e1f470\n8. https://git.kernel.org/stable/c/93a81ca0657758b607c3f4ba889ae806be9beb73", "creation_timestamp": "2025-06-18T10:40:01.000000Z"}]}