CVE-2025-38504

Summary: CVE-2025-38504 relates to the Linux kernel, specifically the io_uring/zcrx component. The connected documents describe a code-level fix in the destruction path for page pools, where a misplaced warning could trigger during destruction and affect niovs handling. The root cause is that nio...

The vulnerability of the kmalloc() function in the io_uring component of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the kmalloc function in the iouring component of the Linux operating system is related to the cyclic execution of kmalloc calls approximately 65,350 times. Exploiting this vulnerability can allow an attacker to cause a service failure...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an attempt by the iouring/rsrc component to lock a mutex in a non-TASKRUNNING state, which could lead to...

The vulnerability of the io_statx() function in the fs/io_uring.c module of the io_uring component of the Linux operating system allows a attacker to cause a service failure or increase privileges.

The vulnerability of the iostatx function in the fs/iouring.c module of the iouring component of the Linux operating system’s kernel is related to the use of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a service failure or increase their privileges...

PT-2023-9422 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to errors in memory release in the io uring component of the Linux kernel. Exploitation of this issue may allow an attacker to cause a denial of service. The probl...