CVE-2025-38546

🗓️ 16 Aug 2025 11:22:20Reported by LinuxType

Linux kernel: fix memory leak in clip_vcc; two calls serialized with lock and clip_vcc push check.

Reporter	Title	Published	Views	Family All 205
AstraLinux	Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15	20 May 202605:53	–	astralinux
CBLMariner	CVE-2025-38546 affecting package kernel for versions less than 6.6.104.2-1	1 Oct 202519:21	–	cbl_mariner
CBLMariner	CVE-2025-38546 affecting package kernel for versions less than 5.15.200.1-1	9 Mar 202614:32	–	cbl_mariner
CNNVD	Linux kernel 安全漏洞	16 Aug 202500:00	–	cnnvd
Cvelist	CVE-2025-38546 atm: clip: Fix memory leak of struct clip_vcc.	16 Aug 202511:22	–	cvelist
Debian	[SECURITY] [DLA 4327-1] linux security update	13 Oct 202509:16	–	debian
Debian	[SECURITY] [DLA 4328-1] linux-6.1 security update	13 Oct 202509:16	–	debian
Debian CVE	CVE-2025-38546	16 Aug 202511:22	–	debiancve
Tenable Nessus	Debian dla-4327 : ata-modules-5.10.0-35-armmp-di - security update	13 Oct 202500:00	–	nessus
Tenable Nessus	Debian dla-4328 : linux-config-6.1 - security update	13 Oct 202500:00	–	nessus

NVD

Vulners

CNA

Node

linux linux_kernelRange2.6.13–5.4.296

linux linux_kernelRange5.5–5.10.240

linux linux_kernelRange5.11–5.15.189

linux linux_kernelRange5.16–6.1.146

linux linux_kernelRange6.2–6.6.99

linux linux_kernelRange6.7–6.12.39

linux linux_kernelRange6.13–6.15.7

linux linux_kernelMatch2.6.12-

linux linux_kernelMatch2.6.12rc2

linux linux_kernelMatch2.6.12rc3

linux linux_kernelMatch2.6.12rc4

linux linux_kernelMatch2.6.12rc5

linux linux_kernelMatch6.16rc1

linux linux_kernelMatch6.16rc2

linux linux_kernelMatch6.16rc3

linux linux_kernelMatch6.16rc4

linux linux_kernelMatch6.16rc5

Node

debian debian_linuxMatch11.0

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/atm/clip.c"
    ],
    "versions": [
      {
        "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
        "lessThan": "2fb37ab3226606cbfc9b2b6f9e301b0b735734c5",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
        "lessThan": "9e4dbeee56f614e3f1e166e5d0655a999ea185ef",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
        "lessThan": "1c075e88d5859a2c6b43b27e0e46fb281cef8039",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
        "lessThan": "0c17ff462d98c997d707ee5cf4e4a9b1b52b9d90",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
        "lessThan": "1fb9fb5a4b5cec2d56e26525ef8c519de858fa60",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
        "lessThan": "9f771816f14da6d6157a8c30069091abf6b566fb",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
        "lessThan": "cb2e4a2f8f268d8fba6662f663a2e57846f14a8d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
        "lessThan": "62dba28275a9a3104d4e33595c7b3328d4032d8d",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/atm/clip.c"
    ],
    "versions": [
      {
        "version": "2.6.12",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "2.6.12",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.4.296",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.10.240",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.189",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.146",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.99",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.39",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.15.7",
        "lessThanOrEqual": "6.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.16",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/2fb37ab3226606cbfc9b2b6f9e301b0b735734c5
git	www.git.kernel.org/stable/c/cb2e4a2f8f268d8fba6662f663a2e57846f14a8d
git	www.git.kernel.org/stable/c/1fb9fb5a4b5cec2d56e26525ef8c519de858fa60
git	www.git.kernel.org/stable/c/62dba28275a9a3104d4e33595c7b3328d4032d8d
git	www.git.kernel.org/stable/c/9f771816f14da6d6157a8c30069091abf6b566fb
git	www.git.kernel.org/stable/c/1c075e88d5859a2c6b43b27e0e46fb281cef8039
git	www.git.kernel.org/stable/c/9e4dbeee56f614e3f1e166e5d0655a999ea185ef
git	www.git.kernel.org/stable/c/0c17ff462d98c997d707ee5cf4e4a9b1b52b9d90
lists	www.lists.debian.org/debian-lts-announce/2025/10/msg00007.html
lists	www.lists.debian.org/debian-lts-announce/2025/10/msg00008.html

11 May 2026 21:30Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.15.5

EPSS0.00019

CWE-401