{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-39964","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-04-16T07:20:57.149Z","datePublished":"2025-10-13T13:48:30.334Z","dateUpdated":"2026-05-11T21:39:49.992Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T21:39:49.992Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: af_alg - Disallow concurrent writes in af_alg_sendmsg\n\nIssuing two writes to the same af_alg socket is bogus as the\ndata will be interleaved in an unpredictable fashion.  Furthermore,\nconcurrent writes may create inconsistencies in the internal\nsocket state.\n\nDisallow this by adding a new ctx->write field that indiciates\nexclusive ownership for writing."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["crypto/af_alg.c","include/crypto/if_alg.h"],"versions":[{"version":"8ff590903d5fc7f5a0a988c38267a3d08e6393a2","lessThan":"0f28c4adbc4a97437874c9b669fd7958a8c6d6ce","status":"affected","versionType":"git"},{"version":"8ff590903d5fc7f5a0a988c38267a3d08e6393a2","lessThan":"e4c1ec11132ec466f7362a95f36a506ce4dc08c9","status":"affected","versionType":"git"},{"version":"8ff590903d5fc7f5a0a988c38267a3d08e6393a2","lessThan":"1f323a48e9b5ebfe6dc7d130fdf5c3c0e92a07c8","status":"affected","versionType":"git"},{"version":"8ff590903d5fc7f5a0a988c38267a3d08e6393a2","lessThan":"7c4491b5644e3a3708f3dbd7591be0a570135b84","status":"affected","versionType":"git"},{"version":"8ff590903d5fc7f5a0a988c38267a3d08e6393a2","lessThan":"9aee87da5572b3a14075f501752e209801160d3d","status":"affected","versionType":"git"},{"version":"8ff590903d5fc7f5a0a988c38267a3d08e6393a2","lessThan":"45bcf60fe49b37daab1acee57b27211ad1574042","status":"affected","versionType":"git"},{"version":"8ff590903d5fc7f5a0a988c38267a3d08e6393a2","lessThan":"1b34cbbf4f011a121ef7b2d7d6e6920a036d5285","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["crypto/af_alg.c","include/crypto/if_alg.h"],"versions":[{"version":"2.6.38","status":"affected"},{"version":"0","lessThan":"2.6.38","status":"unaffected","versionType":"semver"},{"version":"5.10.245","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.194","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.154","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.108","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.49","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.16.9","lessThanOrEqual":"6.16.*","status":"unaffected","versionType":"semver"},{"version":"6.17","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.38","versionEndExcluding":"5.10.245"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.38","versionEndExcluding":"5.15.194"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.38","versionEndExcluding":"6.1.154"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.38","versionEndExcluding":"6.6.108"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.38","versionEndExcluding":"6.12.49"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.38","versionEndExcluding":"6.16.9"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"2.6.38","versionEndExcluding":"6.17"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/0f28c4adbc4a97437874c9b669fd7958a8c6d6ce"},{"url":"https://git.kernel.org/stable/c/e4c1ec11132ec466f7362a95f36a506ce4dc08c9"},{"url":"https://git.kernel.org/stable/c/1f323a48e9b5ebfe6dc7d130fdf5c3c0e92a07c8"},{"url":"https://git.kernel.org/stable/c/7c4491b5644e3a3708f3dbd7591be0a570135b84"},{"url":"https://git.kernel.org/stable/c/9aee87da5572b3a14075f501752e209801160d3d"},{"url":"https://git.kernel.org/stable/c/45bcf60fe49b37daab1acee57b27211ad1574042"},{"url":"https://git.kernel.org/stable/c/1b34cbbf4f011a121ef7b2d7d6e6920a036d5285"}],"title":"crypto: af_alg - Disallow concurrent writes in af_alg_sendmsg","x_generator":{"engine":"bippy-1.2.0"}}}}