Use After Free in Canonical Ubuntu Linux

CVE-2025-13350

Ubuntu Linux 6.8 GA retains the legacy AF_UNIX garbage collector but backports upstream commit 8594d9b85c07 ("af_unix: Don’t call skb_get() for OOB skb"). When orphaned MSG_OOB sockets hit unix_gc(), the garbage collector still calls kfree…

Vulnerability class: Use-After-Free

EPSS: 0.000 (0.4th percentile) — read the EPSS interpretation.

Affected products

Canonical Ubuntu Linux — versions 6.8.0-56.58

Weakness classification (CWE)

CWE-416 — Use After Free

References

bugs.launchpad.net/ubuntu/+source/linux/+bug/2121515 (issue-tracking)
git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/noble/commit/ (patch)