Home

CVE-2025-38018

Description

In the Linux kernel, the following vulnerability has been resolved:net/tls: fix kernel panic when alloc_page failedWe cannot set frag_list to null pointer when alloc_page failed.It will be used in tls_strp_check_queue_ok when the next timetls_strp_read_sock is called.This is because we dont reset full_len in tls_strp_flush_anchor_copy()so the recv path will try to continue handling the partial recordon the next call but we dettached the rcvq from the frag list.Alternative fix would be to reset full_len.Unable to handle kernel null pointer dereferenceat virtual address 0000000000000028 Call trace: tls_strp_check_rcv+0x128/0x27c tls_strp_data_ready+0x34/0x44 tls_data_ready+0x3c/0x1f0 tcp_data_ready+0x9c/0xe4 tcp_data_queue+0xf6c/0x12d0 tcp_rcv_established+0x52c/0x798

Risk Information

Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.03

Associated Vulnerability

VulnerabilityOS Platform
SUSE-SU-2025:02249-1(Public Cloud Module 15 SP6) SUSE-SU-2025:02249-1 kernel-azure-devel-debuginfo-6.4.0-150600.8.43.1.x86_64.rpmLinux
SUSE-SU-2025:02249-1(Public Cloud Module 15 SP6) SUSE-SU-2025:02249-1 kernel-azure-devel-6.4.0-150600.8.43.1.x86_64.rpmLinux
SUSE-SU-2025:02249-1(Public Cloud Module 15 SP6) SUSE-SU-2025:02249-1 kernel-azure-debugsource-6.4.0-150600.8.43.1.x86_64.rpmLinux
SUSE-SU-2025:02249-1(Public Cloud Module 15 SP6) SUSE-SU-2025:02249-1 kernel-azure-debuginfo-6.4.0-150600.8.43.1.x86_64.rpmLinux
SUSE-SU-2025:02249-1(Public Cloud Module 15 SP6) SUSE-SU-2025:02249-1 kernel-azure-6.4.0-150600.8.43.1.x86_64.rpmLinux
SUSE-SU-2025:02249-1(Public Cloud Module 15 SP6) SUSE-SU-2025:02249-1 kernel-syms-azure-6.4.0-150600.8.43.1.x86_64.rpmLinux
SUSE-SU-2025:02249-1(Public Cloud Module 15 SP6) SUSE-SU-2025:02249-1 kernel-source-azure-6.4.0-150600.8.43.1.noarch.rpmLinux
SUSE-SU-2025:02249-1(Public Cloud Module 15 SP6) SUSE-SU-2025:02249-1 kernel-devel-azure-6.4.0-150600.8.43.1.noarch.rpmLinux
kernel Security Update (ALAS2023-2025-1050) python3-perf-6.1.140-154.222.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2025-1050) perf-6.1.140-154.222.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2025-1050) kernel-modules-extra-6.1.140-154.222.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2025-1050) kernel-livepatch-6.1.140-154.222-1.0-0.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2025-1050) kernel-6.1.140-154.222.amzn2023.x86_64.rpmLinux
kernel6.12 Security Update (ALAS2023-2025-1053) kernel-livepatch-6.12.30-34.92-1.0-0.amzn2023.x86_64.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-source-azure-6.4.0-150700.20.6.1.noarch.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-syms-azure-6.4.0-150700.20.6.1.x86_64.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-6.4.0-150700.20.6.1.x86_64.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-debuginfo-6.4.0-150700.20.6.1.x86_64.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-debugsource-6.4.0-150700.20.6.1.x86_64.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-devel-6.4.0-150700.20.6.1.x86_64.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-devel-debuginfo-6.4.0-150700.20.6.1.x86_64.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-devel-azure-6.4.0-150700.20.6.1.noarch.rpmLinux
SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Legacy Module 15 SP7) reiserfs-kmp-default-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Legacy Module 15 SP7) reiserfs-kmp-default-debuginfo-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-syms-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Legacy Module 15 SP7) kernel-default-debugsource-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-base-6.4.0-150700.53.6.1.150700.17.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-source-6.4.0-150700.53.6.1.noarch.rpmLinux
SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-devel-debuginfo-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-devel-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-obs-build-debugsource-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-docs-6.4.0-150700.53.6.1.noarch.rpmLinux
SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-debuginfo-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-obs-build-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-devel-6.4.0-150700.53.6.1.noarch.rpmLinux
SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-macros-6.4.0-150700.53.6.1.noarch.rpmLinux
SUSE-SU-2025:02538-1(Basesystem Module 15 SP6) kernel-default-debuginfo-6.4.0-150600.23.60.5.x86_64.rpmLinux
SUSE-SU-2025:02538-1(Basesystem Module 15 SP6) kernel-default-6.4.0-150600.23.60.5.x86_64.rpmLinux
SUSE-SU-2025:02538-1(Basesystem Module 15 SP6) kernel-devel-6.4.0-150600.23.60.4.noarch.rpmLinux
SUSE-SU-2025:02538-1(Basesystem Module 15 SP6) kernel-default-debugsource-6.4.0-150600.23.60.5.x86_64.rpmLinux
SUSE-SU-2025:02538-1(Basesystem Module 15 SP6) kernel-default-devel-6.4.0-150600.23.60.5.x86_64.rpmLinux
SUSE-SU-2025:02538-1(Basesystem Module 15 SP6) kernel-default-base-6.4.0-150600.23.60.5.150600.12.26.4.x86_64.rpmLinux
SUSE-SU-2025:02538-1(Basesystem Module 15 SP6) kernel-default-devel-debuginfo-6.4.0-150600.23.60.5.x86_64.rpmLinux
SUSE-SU-2025:02538-1(Legacy Module 15 SP6) reiserfs-kmp-default-debuginfo-6.4.0-150600.23.60.5.x86_64.rpmLinux
SUSE-SU-2025:02538-1(Legacy Module 15 SP6) reiserfs-kmp-default-6.4.0-150600.23.60.5.x86_64.rpmLinux
SUSE-SU-2025:02538-1(Development Tools Module 15 SP6) kernel-syms-6.4.0-150600.23.60.4.x86_64.rpmLinux
SUSE-SU-2025:02538-1(Development Tools Module 15 SP6) kernel-source-6.4.0-150600.23.60.4.noarch.rpmLinux
SUSE-SU-2025:02538-1(Development Tools Module 15 SP6) kernel-obs-build-debugsource-6.4.0-150600.23.60.3.x86_64.rpmLinux
SUSE-SU-2025:02538-1(Development Tools Module 15 SP6) kernel-obs-build-6.4.0-150600.23.60.3.x86_64.rpmLinux
SUSE-SU-2025:02538-1(Basesystem Module 15 SP6) kernel-macros-6.4.0-150600.23.60.4.noarch.rpmLinux
SUSE-SU-2025:02538-1(Development Tools Module 15 SP6) kernel-docs-6.4.0-150600.23.60.3.noarch.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234