AZL-65792 CVE-2025-38364 affecting package kernel for versions less than 6.6.104.2-1

🗓️ 25 Jul 2025 13:15:25Reported by GoogleType

osv

osv🔗 osv.dev👁 1 Views

Linux kernel fixes MA_STATE_PREALLOC handling to prevent null dereference and underflow warnings.

Reporter	Title	Published	Views	Family All 162
Tenable Nessus	Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2025-1130)	4 Aug 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2025-1144)	9 Aug 202500:00	–	nessus
Tenable Nessus	Debian dla-4328 : linux-config-6.1 - security update	13 Oct 202500:00	–	nessus
Tenable Nessus	Debian dsa-5973 : affs-modules-6.1.0-37-4kc-malta-di - security update	13 Aug 202500:00	–	nessus
Tenable Nessus	openSUSE 16 Security Update : kernel (openSUSE-SU-2025-20081-1)	2 Dec 202500:00	–	nessus
Tenable Nessus	Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20551)	9 Sep 202500:00	–	nessus
Tenable Nessus	Photon OS 5.0: Linux PHSA-2025-5.0-0575	19 Aug 202500:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : kernel (SUSE-SU-2025:02853-1)	19 Aug 202500:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : kernel (SUSE-SU-2025:02923-1)	21 Aug 202500:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2025:02969-1)	26 Aug 202500:00	–	nessus

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2025-38364

21 Apr 2026 04:37Current

5.6Medium risk

Vulners AI Score5.6

CVSS 3.15.5

EPSS0.0007

linux kernel ma state prealloc preallocation flag zero allocations mmap region