CVE-2025-38456
ipmi:msghandler: Fix potential memory corruption in ipmi_create_user()
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
In the Linux kernel, the following vulnerability has been resolved: ipmi:msghandler: Fix potential memory corruption in ipmi_create_user() The "intf" list iterator is an invalid pointer if the correct "intf->intf_num" is not found. Calling atomic_dec(&intf->nr_users) on and invalid pointer will lead to memory corruption. We don't really need to call atomic_dec() if we haven't called atomic_add_return() so update the if (intf->in_shutdown) path as well.
| Vendor | linux |
| Product | linux |
| Ecosystems | |
| Industries | Technology |
| Published | Jul 25, 2025 |
| Last Updated | May 11, 2026 |
Stay Ahead of the Next One
Get instant alerts for linux linux
Be the first to know when new unknown vulnerabilities affecting linux linux are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Linux / Linux
8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < cbc1670297f675854e982d23c8583900ff0cc67a 8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < e2d5c005dfc96fe857676d1d8ac46b29275cb89b 8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < 9e0d33e75c1604c3fad5586ad4dfa3b2695a3950 8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < 7c1a6ddb99858e7d68961f74ae27caeeeca67b6a 8e76741c3d8b20dfa2d6c30fa10ff927cfd93d82 < fa332f5dc6fc662ad7d3200048772c96b861cf6b
Linux / Linux
5.19
References
git.kernel.org: https://git.kernel.org/stable/c/cbc1670297f675854e982d23c8583900ff0cc67a git.kernel.org: https://git.kernel.org/stable/c/e2d5c005dfc96fe857676d1d8ac46b29275cb89b git.kernel.org: https://git.kernel.org/stable/c/9e0d33e75c1604c3fad5586ad4dfa3b2695a3950 git.kernel.org: https://git.kernel.org/stable/c/7c1a6ddb99858e7d68961f74ae27caeeeca67b6a git.kernel.org: https://git.kernel.org/stable/c/fa332f5dc6fc662ad7d3200048772c96b861cf6b lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html