Vulnerability-Lookup

CVE-2025-39904 (GCVE-0-2025-39904)

Vulnerability from cvelistv5 – Published: 2025-10-01 07:44 – Updated: 2026-05-11 21:38

Title

arm64: kexec: initialize kexec_buf struct in load_other_segments()

Summary

In the Linux kernel, the following vulnerability has been resolved: arm64: kexec: initialize kexec_buf struct in load_other_segments() Patch series "kexec: Fix invalid field access". The kexec_buf structure was previously declared without initialization. commit bf454ec31add ("kexec_file: allow to place kexec_buf randomly") added a field that is always read but not consistently populated by all architectures. This un-initialized field will contain garbage. This is also triggering a UBSAN warning when the uninitialized data was accessed: ------------[ cut here ]------------ UBSAN: invalid-load in ./include/linux/kexec.h:210:10 load of value 252 is not a valid value for type '_Bool' Zero-initializing kexec_buf at declaration ensures all fields are cleanly set, preventing future instances of uninitialized memory being used. An initial fix was already landed for arm64[0], and this patchset fixes the problem on the remaining arm64 code and on riscv, as raised by Mark. Discussions about this problem could be found at[1][2]. This patch (of 3): The kexec_buf structure was previously declared without initialization. commit bf454ec31add ("kexec_file: allow to place kexec_buf randomly") added a field that is always read but not consistently populated by all architectures. This un-initialized field will contain garbage. This is also triggering a UBSAN warning when the uninitialized data was accessed: ------------[ cut here ]------------ UBSAN: invalid-load in ./include/linux/kexec.h:210:10 load of value 252 is not a valid value for type '_Bool' Zero-initializing kexec_buf at declaration ensures all fields are cleanly set, preventing future instances of uninitialized memory being used.

Severity ?

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-908 - Use of Uninitialized Resource

Assigner

Linux

References

2 references

URL	Tags
https://git.kernel.org/stable/c/340cc9a3bd30b25ed…
https://git.kernel.org/stable/c/04d3cd43700a2d0fe…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: bf454ec31add6790f6cdc88328e38901fcbbade6 , < 340cc9a3bd30b25edaf6a9708d41b5f2c10a054a (git) Affected: bf454ec31add6790f6cdc88328e38901fcbbade6 , < 04d3cd43700a2d0fe4bfb1012a8ec7f2e34a3507 (git)
Linux	Linux	Affected: 6.16 Unaffected: 0 , < 6.16 (semver) Unaffected: 6.16.8 , ≤ 6.16.* (semver) Unaffected: 6.17 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2025-39904",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-01-14T19:30:11.300750Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-908",
                "description": "CWE-908 Use of Uninitialized Resource",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-01-14T19:33:14.694Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "arch/arm64/kernel/machine_kexec_file.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "340cc9a3bd30b25edaf6a9708d41b5f2c10a054a",
              "status": "affected",
              "version": "bf454ec31add6790f6cdc88328e38901fcbbade6",
              "versionType": "git"
            },
            {
              "lessThan": "04d3cd43700a2d0fe4bfb1012a8ec7f2e34a3507",
              "status": "affected",
              "version": "bf454ec31add6790f6cdc88328e38901fcbbade6",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "arch/arm64/kernel/machine_kexec_file.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "6.16"
            },
            {
              "lessThan": "6.16",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.16.*",
              "status": "unaffected",
              "version": "6.16.8",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.17",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.16.8",
                  "versionStartIncluding": "6.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.17",
                  "versionStartIncluding": "6.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: kexec: initialize kexec_buf struct in load_other_segments()\n\nPatch series \"kexec: Fix invalid field access\".\n\nThe kexec_buf structure was previously declared without initialization. \ncommit bf454ec31add (\"kexec_file: allow to place kexec_buf randomly\")\nadded a field that is always read but not consistently populated by all\narchitectures.  This un-initialized field will contain garbage.\n\nThis is also triggering a UBSAN warning when the uninitialized data was\naccessed:\n\n\t------------[ cut here ]------------\n\tUBSAN: invalid-load in ./include/linux/kexec.h:210:10\n\tload of value 252 is not a valid value for type \u0027_Bool\u0027\n\nZero-initializing kexec_buf at declaration ensures all fields are cleanly\nset, preventing future instances of uninitialized memory being used.\n\nAn initial fix was already landed for arm64[0], and this patchset fixes\nthe problem on the remaining arm64 code and on riscv, as raised by Mark.\n\nDiscussions about this problem could be found at[1][2].\n\n\nThis patch (of 3):\n\nThe kexec_buf structure was previously declared without initialization.\ncommit bf454ec31add (\"kexec_file: allow to place kexec_buf randomly\")\nadded a field that is always read but not consistently populated by all\narchitectures. This un-initialized field will contain garbage.\n\nThis is also triggering a UBSAN warning when the uninitialized data was\naccessed:\n\n\t------------[ cut here ]------------\n\tUBSAN: invalid-load in ./include/linux/kexec.h:210:10\n\tload of value 252 is not a valid value for type \u0027_Bool\u0027\n\nZero-initializing kexec_buf at declaration ensures all fields are\ncleanly set, preventing future instances of uninitialized memory being\nused."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T21:38:39.363Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/340cc9a3bd30b25edaf6a9708d41b5f2c10a054a"
        },
        {
          "url": "https://git.kernel.org/stable/c/04d3cd43700a2d0fe4bfb1012a8ec7f2e34a3507"
        }
      ],
      "title": "arm64: kexec: initialize kexec_buf struct in load_other_segments()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-39904",
    "datePublished": "2025-10-01T07:44:27.739Z",
    "dateReserved": "2025-04-16T07:20:57.146Z",
    "dateUpdated": "2026-05-11T21:38:39.363Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2025-39904",
      "date": "2026-05-14",
      "epss": "0.0002",
      "percentile": "0.05604"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-39904\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2025-10-01T08:15:33.250\",\"lastModified\":\"2026-01-14T20:16:13.027\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\narm64: kexec: initialize kexec_buf struct in load_other_segments()\\n\\nPatch series \\\"kexec: Fix invalid field access\\\".\\n\\nThe kexec_buf structure was previously declared without initialization. \\ncommit bf454ec31add (\\\"kexec_file: allow to place kexec_buf randomly\\\")\\nadded a field that is always read but not consistently populated by all\\narchitectures.  This un-initialized field will contain garbage.\\n\\nThis is also triggering a UBSAN warning when the uninitialized data was\\naccessed:\\n\\n\\t------------[ cut here ]------------\\n\\tUBSAN: invalid-load in ./include/linux/kexec.h:210:10\\n\\tload of value 252 is not a valid value for type \u0027_Bool\u0027\\n\\nZero-initializing kexec_buf at declaration ensures all fields are cleanly\\nset, preventing future instances of uninitialized memory being used.\\n\\nAn initial fix was already landed for arm64[0], and this patchset fixes\\nthe problem on the remaining arm64 code and on riscv, as raised by Mark.\\n\\nDiscussions about this problem could be found at[1][2].\\n\\n\\nThis patch (of 3):\\n\\nThe kexec_buf structure was previously declared without initialization.\\ncommit bf454ec31add (\\\"kexec_file: allow to place kexec_buf randomly\\\")\\nadded a field that is always read but not consistently populated by all\\narchitectures. This un-initialized field will contain garbage.\\n\\nThis is also triggering a UBSAN warning when the uninitialized data was\\naccessed:\\n\\n\\t------------[ cut here ]------------\\n\\tUBSAN: invalid-load in ./include/linux/kexec.h:210:10\\n\\tload of value 252 is not a valid value for type \u0027_Bool\u0027\\n\\nZero-initializing kexec_buf at declaration ensures all fields are\\ncleanly set, preventing future instances of uninitialized memory being\\nused.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-908\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-908\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.16\",\"versionEndExcluding\":\"6.16.8\",\"matchCriteriaId\":\"153C3365-15EB-4E0F-A035-44F9BD7E758F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.17:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"327D22EF-390B-454C-BD31-2ED23C998A1C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.17:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"C730CD9A-D969-4A8E-9522-162AAF7C0EE9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.17:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"39982C4B-716E-4B2F-8196-FA301F47807D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.17:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"340BEEA9-D70D-4290-B502-FBB1032353B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.17:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"47E4C5C0-079F-4838-971B-8C503D48FCC2\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/04d3cd43700a2d0fe4bfb1012a8ec7f2e34a3507\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/340cc9a3bd30b25edaf6a9708d41b5f2c10a054a\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-39904\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-01-14T19:30:11.300750Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-908\", \"description\": \"CWE-908 Use of Uninitialized Resource\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-01-14T19:30:07.034Z\"}}], \"cna\": {\"title\": \"arm64: kexec: initialize kexec_buf struct in load_other_segments()\", \"affected\": [{\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"bf454ec31add6790f6cdc88328e38901fcbbade6\", \"lessThan\": \"340cc9a3bd30b25edaf6a9708d41b5f2c10a054a\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"bf454ec31add6790f6cdc88328e38901fcbbade6\", \"lessThan\": \"04d3cd43700a2d0fe4bfb1012a8ec7f2e34a3507\", \"versionType\": \"git\"}], \"programFiles\": [\"arch/arm64/kernel/machine_kexec_file.c\"], \"defaultStatus\": \"unaffected\"}, {\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"6.16\"}, {\"status\": \"unaffected\", \"version\": \"0\", \"lessThan\": \"6.16\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"6.16.8\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.16.*\"}, {\"status\": \"unaffected\", \"version\": \"6.17\", \"versionType\": \"original_commit_for_fix\", \"lessThanOrEqual\": \"*\"}], \"programFiles\": [\"arch/arm64/kernel/machine_kexec_file.c\"], \"defaultStatus\": \"affected\"}], \"references\": [{\"url\": \"https://git.kernel.org/stable/c/340cc9a3bd30b25edaf6a9708d41b5f2c10a054a\"}, {\"url\": \"https://git.kernel.org/stable/c/04d3cd43700a2d0fe4bfb1012a8ec7f2e34a3507\"}], \"x_generator\": {\"engine\": \"bippy-1.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\narm64: kexec: initialize kexec_buf struct in load_other_segments()\\n\\nPatch series \\\"kexec: Fix invalid field access\\\".\\n\\nThe kexec_buf structure was previously declared without initialization. \\ncommit bf454ec31add (\\\"kexec_file: allow to place kexec_buf randomly\\\")\\nadded a field that is always read but not consistently populated by all\\narchitectures.  This un-initialized field will contain garbage.\\n\\nThis is also triggering a UBSAN warning when the uninitialized data was\\naccessed:\\n\\n\\t------------[ cut here ]------------\\n\\tUBSAN: invalid-load in ./include/linux/kexec.h:210:10\\n\\tload of value 252 is not a valid value for type \u0027_Bool\u0027\\n\\nZero-initializing kexec_buf at declaration ensures all fields are cleanly\\nset, preventing future instances of uninitialized memory being used.\\n\\nAn initial fix was already landed for arm64[0], and this patchset fixes\\nthe problem on the remaining arm64 code and on riscv, as raised by Mark.\\n\\nDiscussions about this problem could be found at[1][2].\\n\\n\\nThis patch (of 3):\\n\\nThe kexec_buf structure was previously declared without initialization.\\ncommit bf454ec31add (\\\"kexec_file: allow to place kexec_buf randomly\\\")\\nadded a field that is always read but not consistently populated by all\\narchitectures. This un-initialized field will contain garbage.\\n\\nThis is also triggering a UBSAN warning when the uninitialized data was\\naccessed:\\n\\n\\t------------[ cut here ]------------\\n\\tUBSAN: invalid-load in ./include/linux/kexec.h:210:10\\n\\tload of value 252 is not a valid value for type \u0027_Bool\u0027\\n\\nZero-initializing kexec_buf at declaration ensures all fields are\\ncleanly set, preventing future instances of uninitialized memory being\\nused.\"}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.16.8\", \"versionStartIncluding\": \"6.16\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.17\", \"versionStartIncluding\": \"6.16\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"shortName\": \"Linux\", \"dateUpdated\": \"2025-10-01T07:44:27.739Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-39904\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-01-14T19:33:14.694Z\", \"dateReserved\": \"2025-04-16T07:20:57.146Z\", \"assignerOrgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"datePublished\": \"2025-10-01T07:44:27.739Z\", \"assignerShortName\": \"Linux\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

FKIE_CVE-2025-39904

Vulnerability from fkie_nvd - Published: 2025-10-01 08:15 - Updated: 2026-01-14 20:16

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

References

	URL	Tags
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/04d3cd43700a2d0fe4bfb1012a8ec7f2e34a3507	Patch
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/340cc9a3bd30b25edaf6a9708d41b5f2c10a054a	Patch

Impacted products

Vendor	Product	Version
linux	linux_kernel	*
linux	linux_kernel	6.17
linux	linux_kernel	6.17
linux	linux_kernel	6.17
linux	linux_kernel	6.17
linux	linux_kernel	6.17

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "153C3365-15EB-4E0F-A035-44F9BD7E758F",
              "versionEndExcluding": "6.16.8",
              "versionStartIncluding": "6.16",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.17:rc1:*:*:*:*:*:*",
              "matchCriteriaId": "327D22EF-390B-454C-BD31-2ED23C998A1C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.17:rc2:*:*:*:*:*:*",
              "matchCriteriaId": "C730CD9A-D969-4A8E-9522-162AAF7C0EE9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.17:rc3:*:*:*:*:*:*",
              "matchCriteriaId": "39982C4B-716E-4B2F-8196-FA301F47807D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.17:rc4:*:*:*:*:*:*",
              "matchCriteriaId": "340BEEA9-D70D-4290-B502-FBB1032353B1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.17:rc5:*:*:*:*:*:*",
              "matchCriteriaId": "47E4C5C0-079F-4838-971B-8C503D48FCC2",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: kexec: initialize kexec_buf struct in load_other_segments()\n\nPatch series \"kexec: Fix invalid field access\".\n\nThe kexec_buf structure was previously declared without initialization. \ncommit bf454ec31add (\"kexec_file: allow to place kexec_buf randomly\")\nadded a field that is always read but not consistently populated by all\narchitectures.  This un-initialized field will contain garbage.\n\nThis is also triggering a UBSAN warning when the uninitialized data was\naccessed:\n\n\t------------[ cut here ]------------\n\tUBSAN: invalid-load in ./include/linux/kexec.h:210:10\n\tload of value 252 is not a valid value for type \u0027_Bool\u0027\n\nZero-initializing kexec_buf at declaration ensures all fields are cleanly\nset, preventing future instances of uninitialized memory being used.\n\nAn initial fix was already landed for arm64[0], and this patchset fixes\nthe problem on the remaining arm64 code and on riscv, as raised by Mark.\n\nDiscussions about this problem could be found at[1][2].\n\n\nThis patch (of 3):\n\nThe kexec_buf structure was previously declared without initialization.\ncommit bf454ec31add (\"kexec_file: allow to place kexec_buf randomly\")\nadded a field that is always read but not consistently populated by all\narchitectures. This un-initialized field will contain garbage.\n\nThis is also triggering a UBSAN warning when the uninitialized data was\naccessed:\n\n\t------------[ cut here ]------------\n\tUBSAN: invalid-load in ./include/linux/kexec.h:210:10\n\tload of value 252 is not a valid value for type \u0027_Bool\u0027\n\nZero-initializing kexec_buf at declaration ensures all fields are\ncleanly set, preventing future instances of uninitialized memory being\nused."
    }
  ],
  "id": "CVE-2025-39904",
  "lastModified": "2026-01-14T20:16:13.027",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-10-01T08:15:33.250",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/04d3cd43700a2d0fe4bfb1012a8ec7f2e34a3507"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/340cc9a3bd30b25edaf6a9708d41b5f2c10a054a"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-908"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-908"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}

GHSA-9J3F-W66P-JQVG

Vulnerability from github – Published: 2025-10-01 09:30 – Updated: 2025-12-12 21:31

Details

In the Linux kernel, the following vulnerability has been resolved:

arm64: kexec: initialize kexec_buf struct in load_other_segments()

Patch series "kexec: Fix invalid field access".

The kexec_buf structure was previously declared without initialization. commit bf454ec31add ("kexec_file: allow to place kexec_buf randomly") added a field that is always read but not consistently populated by all architectures. This un-initialized field will contain garbage.

This is also triggering a UBSAN warning when the uninitialized data was accessed:

------------[ cut here ]------------
UBSAN: invalid-load in ./include/linux/kexec.h:210:10
load of value 252 is not a valid value for type '_Bool'

Zero-initializing kexec_buf at declaration ensures all fields are cleanly set, preventing future instances of uninitialized memory being used.

An initial fix was already landed for arm64[0], and this patchset fixes the problem on the remaining arm64 code and on riscv, as raised by Mark.

Discussions about this problem could be found at[1][2].

This patch (of 3):

This is also triggering a UBSAN warning when the uninitialized data was accessed:

------------[ cut here ]------------
UBSAN: invalid-load in ./include/linux/kexec.h:210:10
load of value 252 is not a valid value for type '_Bool'

Zero-initializing kexec_buf at declaration ensures all fields are cleanly set, preventing future instances of uninitialized memory being used.

Severity ?

5.5 (Medium)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-39904"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-908"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-10-01T08:15:33Z",
    "severity": "MODERATE"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: kexec: initialize kexec_buf struct in load_other_segments()\n\nPatch series \"kexec: Fix invalid field access\".\n\nThe kexec_buf structure was previously declared without initialization. \ncommit bf454ec31add (\"kexec_file: allow to place kexec_buf randomly\")\nadded a field that is always read but not consistently populated by all\narchitectures.  This un-initialized field will contain garbage.\n\nThis is also triggering a UBSAN warning when the uninitialized data was\naccessed:\n\n\t------------[ cut here ]------------\n\tUBSAN: invalid-load in ./include/linux/kexec.h:210:10\n\tload of value 252 is not a valid value for type \u0027_Bool\u0027\n\nZero-initializing kexec_buf at declaration ensures all fields are cleanly\nset, preventing future instances of uninitialized memory being used.\n\nAn initial fix was already landed for arm64[0], and this patchset fixes\nthe problem on the remaining arm64 code and on riscv, as raised by Mark.\n\nDiscussions about this problem could be found at[1][2].\n\n\nThis patch (of 3):\n\nThe kexec_buf structure was previously declared without initialization.\ncommit bf454ec31add (\"kexec_file: allow to place kexec_buf randomly\")\nadded a field that is always read but not consistently populated by all\narchitectures. This un-initialized field will contain garbage.\n\nThis is also triggering a UBSAN warning when the uninitialized data was\naccessed:\n\n\t------------[ cut here ]------------\n\tUBSAN: invalid-load in ./include/linux/kexec.h:210:10\n\tload of value 252 is not a valid value for type \u0027_Bool\u0027\n\nZero-initializing kexec_buf at declaration ensures all fields are\ncleanly set, preventing future instances of uninitialized memory being\nused.",
  "id": "GHSA-9j3f-w66p-jqvg",
  "modified": "2025-12-12T21:31:33Z",
  "published": "2025-10-01T09:30:24Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-39904"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/04d3cd43700a2d0fe4bfb1012a8ec7f2e34a3507"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/340cc9a3bd30b25edaf6a9708d41b5f2c10a054a"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

WID-SEC-W-2025-2170

Vulnerability from csaf_certbund - Published: 2025-09-30 22:00 - Updated: 2026-04-09 22:00

Summary

Linux Kernel: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Der Kernel stellt den Kern des Linux Betriebssystems dar.

Angriff: Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuführen und andere nicht näher spezifizierte Angriffe durchzuführen, möglicherweise um beliebigen Code auszuführen oder eine Speicherbeschädigung zu verursachen.

Betroffene Betriebssysteme: - Linux

CVE-2025-39891

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39892

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39893

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39894

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39895

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39896

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39897

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39898

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39899

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39900

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39901

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39902

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39903

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39904

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39905

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39906

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39907

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39908

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39909

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39910

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39911

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39912

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39913

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39914

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39915

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39916

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39917

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39918

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39919

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39920

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39921

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39922

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39923

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39924

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39925

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39926

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39927

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

CVE-2025-39928

Affected products

Known affected 11 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Enterprise Linux 10 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:10`	10
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Open Source Linux Kernel Open Source	`cpe:/o:linux:linux_kernel:-`	—
Dell Secure Connect Gateway Appliance <5.32.00.18 Dell / Secure Connect Gateway		Appliance <5.32.00.18

References

195 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://lore.kernel.org/linux-cve-announce/	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lore.kernel.org/linux-cve-announce/202510…	external
https://lists.debian.org/debian-lts-announce/2025…	external
https://lists.debian.org/debian-lts-announce/2025…	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://alas.aws.amazon.com/AL2/ALAS2-2025-3053.html	external
https://alas.aws.amazon.com/AL2/ALAS2KERNEL-5.10-…	external
https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-20…	external
https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-20…	external
https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-20…	external
https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-20…	external
https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-20…	external
https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-20…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://www.dell.com/support/kbdoc/000385230	external
https://linux.oracle.com/errata/ELSA-2025-25754.html	external
https://linux.oracle.com/errata/ELSA-2025-25755.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://linux.oracle.com/errata/ELSA-2025-25757.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://access.redhat.com/errata/RHSA-2025:21463	external
https://access.redhat.com/errata/RHSA-2025:21492	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://access.redhat.com/errata/RHSA-2025:21933	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.opensuse.org/archives/list/security…	external
https://access.redhat.com/errata/RHSA-2025:22387	external
https://access.redhat.com/errata/RHSA-2025:22388	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://access.redhat.com/errata/RHSA-2025:22405	external
https://access.redhat.com/errata/RHSA-2025:22392	external
https://access.redhat.com/errata/RHSA-2025:22395	external
https://linux.oracle.com/errata/ELSA-2025-22388.html	external
https://linux.oracle.com/errata/ELSA-2025-22405.html	external
https://access.redhat.com/errata/RHSA-2025:22571	external
https://linux.oracle.com/errata/ELSA-2025-21118.html	external
https://errata.build.resf.org/RLSA-2025:22387	external
https://ubuntu.com/security/notices/USN-7909-1	external
https://errata.build.resf.org/RLSA-2025:22405	external
https://ubuntu.com/security/notices/USN-7909-3	external
https://ubuntu.com/security/notices/USN-7909-2	external
https://ubuntu.com/security/notices/USN-7910-1	external
https://linux.oracle.com/errata/ELSA-2025-21463.html	external
https://errata.build.resf.org/RLSA-2025:22395	external
https://ubuntu.com/security/notices/USN-7909-4	external
https://linux.oracle.com/errata/ELSA-2025-22395.html	external
https://linux.oracle.com/errata/ELSA-2025-21931.html	external
https://access.redhat.com/errata/RHSA-2025:22854	external
https://linux.oracle.com/errata/ELSA-2025-22854.html	external
https://access.redhat.com/errata/RHSA-2025:22865	external
https://linux.oracle.com/errata/ELSA-2025-22865.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://linux.oracle.com/errata/ELSA-2025-28049.html	external
https://errata.build.resf.org/RLSA-2025:22854	external
https://errata.build.resf.org/RLSA-2025:22865	external
https://linux.oracle.com/errata/ELSA-2025-28048.html	external
https://lists.debian.org/debian-lts-announce/2025…	external
https://oss.oracle.com/pipermail/el-errata/2025-D…	external
https://ubuntu.com/security/notices/USN-7909-5	external
https://ubuntu.com/security/notices/USN-7933-1	external
https://ubuntu.com/security/notices/USN-7938-1	external
https://access.redhat.com/errata/RHSA-2025:23789	external
https://access.redhat.com/errata/RHSA-2026:0173	external
https://access.redhat.com/errata/RHSA-2026:0271	external
https://access.redhat.com/errata/RHSA-2026:0453	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://linux.oracle.com/errata/ELSA-2026-0453.html	external
https://access.redhat.com/errata/RHSA-2026:0489	external
https://access.redhat.com/errata/RHSA-2026:0535	external
https://access.redhat.com/errata/RHSA-2026:0536	external
https://access.redhat.com/errata/RHSA-2026:0537	external
https://access.redhat.com/errata/RHSA-2026:0534	external
https://access.redhat.com/errata/RHSA-2026:0533	external
https://access.redhat.com/errata/RHSA-2026:0576	external
https://errata.build.resf.org/RLSA-2026:0453	external
https://linux.oracle.com/errata/ELSA-2026-50071.html	external
https://access.redhat.com/errata/RHSA-2026:1443	external
https://access.redhat.com/errata/RHSA-2026:1445	external
https://access.redhat.com/errata/RHSA-2026:1441	external
https://access.redhat.com/errata/RHSA-2026:1512	external
https://access.redhat.com/errata/RHSA-2026:1581	external
https://access.redhat.com/errata/RHSA-2026:1623	external
http://linux.oracle.com/errata/ELSA-2026-50100.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://ubuntu.com/security/notices/USN-8033-2	external
https://ubuntu.com/security/notices/USN-8033-3	external
https://ubuntu.com/security/notices/USN-8033-1	external
https://ubuntu.com/security/notices/USN-8034-1	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://ubuntu.com/security/notices/USN-8033-4	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://ubuntu.com/security/notices/USN-8033-6	external
https://ubuntu.com/security/notices/USN-8034-2	external
https://ubuntu.com/security/notices/USN-8033-5	external
https://ubuntu.com/security/notices/USN-8033-7	external
https://ubuntu.com/security/notices/USN-8033-8	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://linux.oracle.com/errata/ELSA-2026-1581.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://ubuntu.com/security/notices/USN-8100-1	external
https://ubuntu.com/security/notices/USN-8095-1	external
https://ubuntu.com/security/notices/USN-8095-2	external
https://ubuntu.com/security/notices/USN-8095-3	external
https://ubuntu.com/security/notices/USN-8095-4	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://linux.oracle.com/errata/ELSA-2026-3685.html	external
https://ubuntu.com/security/notices/USN-8125-1	external
https://ubuntu.com/security/notices/USN-8126-1	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://ubuntu.com/security/notices/USN-8095-5	external
https://ubuntu.com/security/notices/USN-8141-1	external
https://ubuntu.com/security/notices/USN-8165-1	external
https://ubuntu.com/security/notices/USN-8163-1	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren und andere nicht n\u00e4her spezifizierte Angriffe durchzuf\u00fchren, m\u00f6glicherweise um beliebigen Code auszuf\u00fchren oder eine Speicherbesch\u00e4digung zu verursachen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-2170 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2170.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-2170 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2170"
      },
      {
        "category": "external",
        "summary": "Kernel CVE Announce Mailingliste",
        "url": "https://lore.kernel.org/linux-cve-announce/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39891",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100114-CVE-2025-39891-61f7@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39892",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100114-CVE-2025-39892-ec4d@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39893",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100115-CVE-2025-39893-6653@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39894",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100115-CVE-2025-39894-f2dd@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39895",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100115-CVE-2025-39895-d6e8@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39896",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100116-CVE-2025-39896-e29a@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39897",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100116-CVE-2025-39897-a100@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39898",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100116-CVE-2025-39898-d844@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39899",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100117-CVE-2025-39899-3921@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39900",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100117-CVE-2025-39900-bb5f@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39901",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100117-CVE-2025-39901-d6f4@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39902",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100118-CVE-2025-39902-0fe1@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39903",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100118-CVE-2025-39903-6698@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39904",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100108-CVE-2025-39904-77a6@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39905",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100108-CVE-2025-39905-157f@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39906",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100108-CVE-2025-39906-5913@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39907",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100109-CVE-2025-39907-73b1@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39908",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100109-CVE-2025-39908-5d27@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39909",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100109-CVE-2025-39909-202c@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39910",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100110-CVE-2025-39910-568a@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39911",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100110-CVE-2025-39911-5646@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39912",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100110-CVE-2025-39912-13cf@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39913",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100111-CVE-2025-39913-f166@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39914",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100111-CVE-2025-39914-a6eb@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39915",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100111-CVE-2025-39915-7a9f@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39916",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100111-CVE-2025-39916-63c0@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39917",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100112-CVE-2025-39917-b3a9@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39918",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100119-CVE-2025-39918-7902@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39919",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100119-CVE-2025-39919-b28a@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39920",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100120-CVE-2025-39920-5dbe@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39921",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100120-CVE-2025-39921-820c@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39922",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100120-CVE-2025-39922-36d0@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39923",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100122-CVE-2025-39923-6775@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39924",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100124-CVE-2025-39924-1a11@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39925",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100124-CVE-2025-39925-bcec@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39926",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100125-CVE-2025-39926-06ea@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39927",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100125-CVE-2025-39927-5a57@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39928",
        "url": "https://lore.kernel.org/linux-cve-announce/2025100125-CVE-2025-39928-b66c@gregkh/"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4327 vom 2025-10-13",
        "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4328 vom 2025-10-13",
        "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03600-1 vom 2025-10-15",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/VHWHH7ZSMFJ6PQZ3CBDGGCWHNBCWD26Z/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03601-1 vom 2025-10-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022903.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03634-1 vom 2025-10-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022925.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03633-1 vom 2025-10-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022926.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:3751-1 vom 2025-10-23",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NMB6RXALFYMRMM4UK7R54RAQRCZJEBH4/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20851-1 vom 2025-10-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023025.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20861-1 vom 2025-10-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023019.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20870-1 vom 2025-10-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023060.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2-2025-3053 vom 2025-10-27",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2-2025-3053.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2KERNEL-5.10-2025-109 vom 2025-10-27",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2KERNEL-5.10-2025-109.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2LIVEPATCH-2025-277 vom 2025-10-27",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-2025-277.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2LIVEPATCH-2025-278 vom 2025-10-27",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-2025-278.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2LIVEPATCH-2025-279 vom 2025-10-27",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-2025-279.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2LIVEPATCH-2025-280 vom 2025-10-27",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-2025-280.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2LIVEPATCH-2025-281 vom 2025-10-27",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-2025-281.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2LIVEPATCH-2025-282 vom 2025-10-27",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-2025-282.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20898-1 vom 2025-10-30",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023116.html"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2025-390 vom 2025-11-05",
        "url": "https://www.dell.com/support/kbdoc/000385230"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-25754 vom 2025-11-10",
        "url": "https://linux.oracle.com/errata/ELSA-2025-25754.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-25755 vom 2025-11-10",
        "url": "https://linux.oracle.com/errata/ELSA-2025-25755.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4057-1 vom 2025-11-11",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023254.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-25757 vom 2025-11-12",
        "url": "https://linux.oracle.com/errata/ELSA-2025-25757.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20994-1 vom 2025-11-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023276.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20996-1 vom 2025-11-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023275.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21463 vom 2025-11-17",
        "url": "https://access.redhat.com/errata/RHSA-2025:21463"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21492 vom 2025-11-17",
        "url": "https://access.redhat.com/errata/RHSA-2025:21492"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4128-1 vom 2025-11-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023299.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4132-1 vom 2025-11-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023302.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4141-1 vom 2025-11-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023304.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4140-1 vom 2025-11-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023305.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21933 vom 2025-11-24",
        "url": "https://access.redhat.com/errata/RHSA-2025:21933"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4189-1 vom 2025-11-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023334.html"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2025-20081-1 vom 2025-11-26",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/J4KLZE7HUQJ2N6IQEI3G2KJZ5VB36YBI/"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2025-20091-1 vom 2025-11-27",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/QVNKE6YBHUN7AVUHO7UZCJJGK4HYS62H/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21064-1 vom 2025-11-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023415.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21056-1 vom 2025-11-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023419.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21040-1 vom 2025-11-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023394.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21052-1 vom 2025-11-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023389.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21074-1 vom 2025-11-28",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023431.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4301-1 vom 2025-11-28",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/LLIMXFMWOGTFRJZEC4XPGIMNBCRKQ7IF/"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22387 vom 2025-12-01",
        "url": "https://access.redhat.com/errata/RHSA-2025:22387"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22388 vom 2025-12-01",
        "url": "https://access.redhat.com/errata/RHSA-2025:22388"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21080-1 vom 2025-11-28",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023429.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22405 vom 2025-12-01",
        "url": "https://access.redhat.com/errata/RHSA-2025:22405"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22392 vom 2025-12-01",
        "url": "https://access.redhat.com/errata/RHSA-2025:22392"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22395 vom 2025-12-01",
        "url": "https://access.redhat.com/errata/RHSA-2025:22395"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-22388 vom 2025-12-01",
        "url": "https://linux.oracle.com/errata/ELSA-2025-22388.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-22405 vom 2025-12-02",
        "url": "https://linux.oracle.com/errata/ELSA-2025-22405.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22571 vom 2025-12-02",
        "url": "https://access.redhat.com/errata/RHSA-2025:22571"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-21118 vom 2025-12-04",
        "url": "https://linux.oracle.com/errata/ELSA-2025-21118.html"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:22387 vom 2025-12-04",
        "url": "https://errata.build.resf.org/RLSA-2025:22387"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7909-1 vom 2025-12-04",
        "url": "https://ubuntu.com/security/notices/USN-7909-1"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:22405 vom 2025-12-04",
        "url": "https://errata.build.resf.org/RLSA-2025:22405"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7909-3 vom 2025-12-04",
        "url": "https://ubuntu.com/security/notices/USN-7909-3"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7909-2 vom 2025-12-04",
        "url": "https://ubuntu.com/security/notices/USN-7909-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7910-1 vom 2025-12-04",
        "url": "https://ubuntu.com/security/notices/USN-7910-1"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-21463 vom 2025-12-05",
        "url": "https://linux.oracle.com/errata/ELSA-2025-21463.html"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:22395 vom 2025-12-05",
        "url": "https://errata.build.resf.org/RLSA-2025:22395"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7909-4 vom 2025-12-05",
        "url": "https://ubuntu.com/security/notices/USN-7909-4"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-22395 vom 2025-12-06",
        "url": "https://linux.oracle.com/errata/ELSA-2025-22395.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-21931 vom 2025-12-05",
        "url": "https://linux.oracle.com/errata/ELSA-2025-21931.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22854 vom 2025-12-08",
        "url": "https://access.redhat.com/errata/RHSA-2025:22854"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-22854 vom 2025-12-09",
        "url": "https://linux.oracle.com/errata/ELSA-2025-22854.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22865 vom 2025-12-09",
        "url": "https://access.redhat.com/errata/RHSA-2025:22865"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-22865 vom 2025-12-09",
        "url": "https://linux.oracle.com/errata/ELSA-2025-22865.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21147-1 vom 2025-12-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023511.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21179-1 vom 2025-12-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023499.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21139-1 vom 2025-12-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023515.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21180-1 vom 2025-12-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023498.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-28049 vom 2025-12-15",
        "url": "https://linux.oracle.com/errata/ELSA-2025-28049.html"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:22854 vom 2025-12-14",
        "url": "https://errata.build.resf.org/RLSA-2025:22854"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:22865 vom 2025-12-13",
        "url": "https://errata.build.resf.org/RLSA-2025:22865"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-28048 vom 2025-12-12",
        "url": "https://linux.oracle.com/errata/ELSA-2025-28048.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4404 vom 2025-12-12",
        "url": "https://lists.debian.org/debian-lts-announce/2025/12/msg00015.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-28049 vom 2025-12-15",
        "url": "https://oss.oracle.com/pipermail/el-errata/2025-December/019260.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7909-5 vom 2025-12-15",
        "url": "https://ubuntu.com/security/notices/USN-7909-5"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7933-1 vom 2025-12-15",
        "url": "https://ubuntu.com/security/notices/USN-7933-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7938-1 vom 2025-12-16",
        "url": "https://ubuntu.com/security/notices/USN-7938-1"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23789 vom 2025-12-22",
        "url": "https://access.redhat.com/errata/RHSA-2025:23789"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:0173 vom 2026-01-07",
        "url": "https://access.redhat.com/errata/RHSA-2026:0173"
      },
      {
        "category": "external",
        "summary": "RedHat Security Advisory",
        "url": "https://access.redhat.com/errata/RHSA-2026:0271"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:0453 vom 2026-01-12",
        "url": "https://access.redhat.com/errata/RHSA-2026:0453"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20015-1 vom 2026-01-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023727.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20021-1 vom 2026-01-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023723.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20012-1 vom 2026-01-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023715.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-0453 vom 2026-01-13",
        "url": "https://linux.oracle.com/errata/ELSA-2026-0453.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:0489 vom 2026-01-13",
        "url": "https://access.redhat.com/errata/RHSA-2026:0489"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:0535 vom 2026-01-14",
        "url": "https://access.redhat.com/errata/RHSA-2026:0535"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:0536 vom 2026-01-14",
        "url": "https://access.redhat.com/errata/RHSA-2026:0536"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:0537 vom 2026-01-14",
        "url": "https://access.redhat.com/errata/RHSA-2026:0537"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:0534 vom 2026-01-14",
        "url": "https://access.redhat.com/errata/RHSA-2026:0534"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:0533 vom 2026-01-14",
        "url": "https://access.redhat.com/errata/RHSA-2026:0533"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:0576 vom 2026-01-14",
        "url": "https://access.redhat.com/errata/RHSA-2026:0576"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2026:0453 vom 2026-01-17",
        "url": "https://errata.build.resf.org/RLSA-2026:0453"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-50071 vom 2026-01-26",
        "url": "https://linux.oracle.com/errata/ELSA-2026-50071.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:1443 vom 2026-01-28",
        "url": "https://access.redhat.com/errata/RHSA-2026:1443"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:1445 vom 2026-01-28",
        "url": "https://access.redhat.com/errata/RHSA-2026:1445"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:1441 vom 2026-01-28",
        "url": "https://access.redhat.com/errata/RHSA-2026:1441"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:1512 vom 2026-01-28",
        "url": "https://access.redhat.com/errata/RHSA-2026:1512"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:1581 vom 2026-01-29",
        "url": "https://access.redhat.com/errata/RHSA-2026:1581"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:1623 vom 2026-02-02",
        "url": "https://access.redhat.com/errata/RHSA-2026:1623"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-50100 vom 2026-02-10",
        "url": "http://linux.oracle.com/errata/ELSA-2026-50100.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0447-1 vom 2026-02-11",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024124.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8033-2 vom 2026-02-12",
        "url": "https://ubuntu.com/security/notices/USN-8033-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8033-3 vom 2026-02-12",
        "url": "https://ubuntu.com/security/notices/USN-8033-3"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8033-1 vom 2026-02-12",
        "url": "https://ubuntu.com/security/notices/USN-8033-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8034-1 vom 2026-02-12",
        "url": "https://ubuntu.com/security/notices/USN-8034-1"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0471-1 vom 2026-02-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024142.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0473-1 vom 2026-02-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024136.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0472-1 vom 2026-02-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024141.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8033-4 vom 2026-02-13",
        "url": "https://ubuntu.com/security/notices/USN-8033-4"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20332-1 vom 2026-02-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024163.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20317-1 vom 2026-02-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024177.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20333-1 vom 2026-02-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024162.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20316-1 vom 2026-02-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024178.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8033-6 vom 2026-02-17",
        "url": "https://ubuntu.com/security/notices/USN-8033-6"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8034-2 vom 2026-02-17",
        "url": "https://ubuntu.com/security/notices/USN-8034-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8033-5 vom 2026-02-17",
        "url": "https://ubuntu.com/security/notices/USN-8033-5"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8033-7 vom 2026-02-19",
        "url": "https://ubuntu.com/security/notices/USN-8033-7"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8033-8 vom 2026-02-19",
        "url": "https://ubuntu.com/security/notices/USN-8033-8"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:0587-1 vom 2026-02-20",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024356.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20479-1 vom 2026-02-26",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024407.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20477-1 vom 2026-02-26",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024409.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20498-1 vom 2026-02-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024476.html"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2026:20287-1 vom 2026-02-28",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/K7KIWX7XP3UMVFSHT47OOZ24TQQYNNHI/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20520-1 vom 2026-02-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024455.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-1581 vom 2026-03-04",
        "url": "https://linux.oracle.com/errata/ELSA-2026-1581.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20615-1 vom 2026-03-05",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024605.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20562-1 vom 2026-03-05",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024577.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20561-1 vom 2026-03-05",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024578.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20555-1 vom 2026-03-05",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024590.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20560-1 vom 2026-03-05",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024586.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20599-1 vom 2026-03-05",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024614.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20570-1 vom 2026-03-05",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024574.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8100-1 vom 2026-03-17",
        "url": "https://ubuntu.com/security/notices/USN-8100-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8095-1 vom 2026-03-17",
        "url": "https://ubuntu.com/security/notices/USN-8095-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8095-2 vom 2026-03-17",
        "url": "https://ubuntu.com/security/notices/USN-8095-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8095-3 vom 2026-03-17",
        "url": "https://ubuntu.com/security/notices/USN-8095-3"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8095-4 vom 2026-03-23",
        "url": "https://ubuntu.com/security/notices/USN-8095-4"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20794-1 vom 2026-03-25",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024895.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20819-1 vom 2026-03-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024871.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20772-1 vom 2026-03-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024862.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-3685 vom 2026-03-25",
        "url": "https://linux.oracle.com/errata/ELSA-2026-3685.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8125-1 vom 2026-03-25",
        "url": "https://ubuntu.com/security/notices/USN-8125-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8126-1 vom 2026-03-25",
        "url": "https://ubuntu.com/security/notices/USN-8126-1"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20845-1 vom 2026-03-28",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024994.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20872-1 vom 2026-03-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024969.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:20876-1 vom 2026-03-30",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/025054.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8095-5 vom 2026-04-01",
        "url": "https://ubuntu.com/security/notices/USN-8095-5"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8141-1 vom 2026-04-01",
        "url": "https://ubuntu.com/security/notices/USN-8141-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8165-1 vom 2026-04-10",
        "url": "https://ubuntu.com/security/notices/USN-8165-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8163-1 vom 2026-04-10",
        "url": "https://ubuntu.com/security/notices/USN-8163-1"
      }
    ],
    "source_lang": "en-US",
    "title": "Linux Kernel: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-04-09T22:00:00.000+00:00",
      "generator": {
        "date": "2026-04-10T07:44:52.371+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2025-2170",
      "initial_release_date": "2025-09-30T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-09-30T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-10-01T22:00:00.000+00:00",
          "number": "2",
          "summary": "Referenz(en) aufgenommen: EUVD-2025-31827, EUVD-2025-31825, EUVD-2025-31823, EUVD-2025-31830, EUVD-2025-31824, EUVD-2025-31829, EUVD-2025-31828, EUVD-2025-31826"
        },
        {
          "date": "2025-10-12T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2025-10-15T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-10-19T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-10-23T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-10-26T23:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-10-27T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von SUSE und Amazon aufgenommen"
        },
        {
          "date": "2025-10-30T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-04T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Dell aufgenommen"
        },
        {
          "date": "2025-11-10T23:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-11-11T23:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-12T23:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-16T23:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-11-18T23:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-19T23:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-23T23:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-11-24T23:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-25T23:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von openSUSE aufgenommen"
        },
        {
          "date": "2025-11-26T23:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von openSUSE aufgenommen"
        },
        {
          "date": "2025-11-27T23:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-30T23:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von SUSE und Red Hat aufgenommen"
        },
        {
          "date": "2025-12-01T23:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von Red Hat und Oracle Linux aufgenommen"
        },
        {
          "date": "2025-12-02T23:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von Oracle Linux und Red Hat aufgenommen"
        },
        {
          "date": "2025-12-03T23:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-12-04T23:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-12-07T23:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-12-08T23:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates von Red Hat und Oracle Linux aufgenommen"
        },
        {
          "date": "2025-12-09T23:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von Red Hat und Oracle Linux aufgenommen"
        },
        {
          "date": "2025-12-10T23:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-12-14T23:00:00.000+00:00",
          "number": "31",
          "summary": "Neue Updates von Oracle Linux, Rocky Enterprise Software Foundation und Debian aufgenommen"
        },
        {
          "date": "2025-12-15T23:00:00.000+00:00",
          "number": "32",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-12-16T23:00:00.000+00:00",
          "number": "33",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-12-21T23:00:00.000+00:00",
          "number": "34",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-01-06T23:00:00.000+00:00",
          "number": "35",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-01-07T23:00:00.000+00:00",
          "number": "36",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-01-11T23:00:00.000+00:00",
          "number": "37",
          "summary": "Neue Updates von Red Hat und SUSE aufgenommen"
        },
        {
          "date": "2026-01-12T23:00:00.000+00:00",
          "number": "38",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2026-01-13T23:00:00.000+00:00",
          "number": "39",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-01-18T23:00:00.000+00:00",
          "number": "40",
          "summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
        },
        {
          "date": "2026-01-26T23:00:00.000+00:00",
          "number": "41",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2026-01-27T23:00:00.000+00:00",
          "number": "42",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-01-28T23:00:00.000+00:00",
          "number": "43",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-01-29T23:00:00.000+00:00",
          "number": "44",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-02-01T23:00:00.000+00:00",
          "number": "45",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-02-09T23:00:00.000+00:00",
          "number": "46",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2026-02-11T23:00:00.000+00:00",
          "number": "47",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-02-12T23:00:00.000+00:00",
          "number": "48",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-02-15T23:00:00.000+00:00",
          "number": "49",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-02-17T23:00:00.000+00:00",
          "number": "50",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2026-02-18T23:00:00.000+00:00",
          "number": "51",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2026-02-19T23:00:00.000+00:00",
          "number": "52",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2026-02-22T23:00:00.000+00:00",
          "number": "53",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-02-26T23:00:00.000+00:00",
          "number": "54",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-03-01T23:00:00.000+00:00",
          "number": "55",
          "summary": "Neue Updates von SUSE und openSUSE aufgenommen"
        },
        {
          "date": "2026-03-04T23:00:00.000+00:00",
          "number": "56",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2026-03-05T23:00:00.000+00:00",
          "number": "57",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-03-16T23:00:00.000+00:00",
          "number": "58",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2026-03-17T23:00:00.000+00:00",
          "number": "59",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2026-03-23T23:00:00.000+00:00",
          "number": "60",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2026-03-24T23:00:00.000+00:00",
          "number": "61",
          "summary": "Neue Updates von SUSE und Oracle Linux aufgenommen"
        },
        {
          "date": "2026-03-25T23:00:00.000+00:00",
          "number": "62",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2026-03-29T22:00:00.000+00:00",
          "number": "63",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-03-30T22:00:00.000+00:00",
          "number": "64",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-04-01T22:00:00.000+00:00",
          "number": "65",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2026-04-09T22:00:00.000+00:00",
          "number": "66",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        }
      ],
      "status": "final",
      "version": "66"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Appliance \u003c5.32.00.18",
                "product": {
                  "name": "Dell Secure Connect Gateway Appliance \u003c5.32.00.18",
                  "product_id": "T048301"
                }
              },
              {
                "category": "product_version",
                "name": "Appliance 5.32.00.18",
                "product": {
                  "name": "Dell Secure Connect Gateway Appliance 5.32.00.18",
                  "product_id": "T048301-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:dell:secure_connect_gateway:appliance__5.32.00.18"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Secure Connect Gateway"
          }
        ],
        "category": "vendor",
        "name": "Dell"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source Linux Kernel",
            "product": {
              "name": "Open Source Linux Kernel",
              "product_id": "T047322",
              "product_identification_helper": {
                "cpe": "cpe:/o:linux:linux_kernel:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "RESF Rocky Linux",
            "product": {
              "name": "RESF Rocky Linux",
              "product_id": "T032255",
              "product_identification_helper": {
                "cpe": "cpe:/o:resf:rocky_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "RESF"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux",
                "product": {
                  "name": "Red Hat Enterprise Linux",
                  "product_id": "67646",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "10",
                "product": {
                  "name": "Red Hat Enterprise Linux 10",
                  "product_id": "T048374",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:10"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "SUSE openSUSE",
            "product": {
              "name": "SUSE openSUSE",
              "product_id": "T027843",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:opensuse:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-39891",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39891"
    },
    {
      "cve": "CVE-2025-39892",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39892"
    },
    {
      "cve": "CVE-2025-39893",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39893"
    },
    {
      "cve": "CVE-2025-39894",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39894"
    },
    {
      "cve": "CVE-2025-39895",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39895"
    },
    {
      "cve": "CVE-2025-39896",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39896"
    },
    {
      "cve": "CVE-2025-39897",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39897"
    },
    {
      "cve": "CVE-2025-39898",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39898"
    },
    {
      "cve": "CVE-2025-39899",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39899"
    },
    {
      "cve": "CVE-2025-39900",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39900"
    },
    {
      "cve": "CVE-2025-39901",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39901"
    },
    {
      "cve": "CVE-2025-39902",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39902"
    },
    {
      "cve": "CVE-2025-39903",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39903"
    },
    {
      "cve": "CVE-2025-39904",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39904"
    },
    {
      "cve": "CVE-2025-39905",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39905"
    },
    {
      "cve": "CVE-2025-39906",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39906"
    },
    {
      "cve": "CVE-2025-39907",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39907"
    },
    {
      "cve": "CVE-2025-39908",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39908"
    },
    {
      "cve": "CVE-2025-39909",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39909"
    },
    {
      "cve": "CVE-2025-39910",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39910"
    },
    {
      "cve": "CVE-2025-39911",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39911"
    },
    {
      "cve": "CVE-2025-39912",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39912"
    },
    {
      "cve": "CVE-2025-39913",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39913"
    },
    {
      "cve": "CVE-2025-39914",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39914"
    },
    {
      "cve": "CVE-2025-39915",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39915"
    },
    {
      "cve": "CVE-2025-39916",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39916"
    },
    {
      "cve": "CVE-2025-39917",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39917"
    },
    {
      "cve": "CVE-2025-39918",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39918"
    },
    {
      "cve": "CVE-2025-39919",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39919"
    },
    {
      "cve": "CVE-2025-39920",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39920"
    },
    {
      "cve": "CVE-2025-39921",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39921"
    },
    {
      "cve": "CVE-2025-39922",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39922"
    },
    {
      "cve": "CVE-2025-39923",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39923"
    },
    {
      "cve": "CVE-2025-39924",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39924"
    },
    {
      "cve": "CVE-2025-39925",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39925"
    },
    {
      "cve": "CVE-2025-39926",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39926"
    },
    {
      "cve": "CVE-2025-39927",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39927"
    },
    {
      "cve": "CVE-2025-39928",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T047322",
          "T048301"
        ]
      },
      "release_date": "2025-09-30T22:00:00.000+00:00",
      "title": "CVE-2025-39928"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-39904 (GCVE-0-2025-39904)

FKIE_CVE-2025-39904

GHSA-9J3F-W66P-JQVG

WID-SEC-W-2025-2170

Tags

Sightings

Nomenclature