Vulnerability-Lookup

CVE-2025-39858 (GCVE-0-2025-39858)

Vulnerability from cvelistv5 – Published: 2025-09-19 15:26 – Updated: 2026-01-14 19:23

Title

eth: mlx4: Fix IS_ERR() vs NULL check bug in mlx4_en_create_rx_ring

Summary

In the Linux kernel, the following vulnerability has been resolved: eth: mlx4: Fix IS_ERR() vs NULL check bug in mlx4_en_create_rx_ring Replace NULL check with IS_ERR() check after calling page_pool_create() since this function returns error pointers (ERR_PTR). Using NULL check could lead to invalid pointer dereference.

Severity ?

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-476 - NULL Pointer Dereference

Assigner

Linux

References

URL

WID-SEC-W-2025-2099

Vulnerability from csaf_certbund - Published: 2025-09-21 22:00 - Updated: 2026-01-07 23:00

Summary

Linux Kernel: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Der Kernel stellt den Kern des Linux Betriebssystems dar.

Angriff

Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuführen oder nicht näher beschriebene Auswirkungen zu erzielen.

Betroffene Betriebssysteme

- Linux

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren oder nicht n\u00e4her beschriebene Auswirkungen zu erzielen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-2099 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2099.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-2099 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2099"
      },
      {
        "category": "external",
        "summary": "Kernel CVE Announce Mailingliste",
        "url": "https://lore.kernel.org/linux-cve-announce/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39837",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091902-CVE-2025-39837-eec6@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39838",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091902-CVE-2025-39838-2a5d@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39839",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091902-CVE-2025-39839-2786@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39840",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091902-CVE-2025-39840-bad6@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39841",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091902-CVE-2025-39841-2c0f@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39842",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091902-CVE-2025-39842-495f@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39843",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091903-CVE-2025-39843-0702@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39844",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091903-CVE-2025-39844-7583@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39845",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091903-CVE-2025-39845-a493@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39846",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091903-CVE-2025-39846-0d36@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39847",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091903-CVE-2025-39847-6ac1@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39848",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091904-CVE-2025-39848-7675@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39849",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091904-CVE-2025-39849-c414@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39850",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091904-CVE-2025-39850-a495@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39851",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091904-CVE-2025-39851-8a50@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39852",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091904-CVE-2025-39852-4209@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39853",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091904-CVE-2025-39853-a617@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39854",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091905-CVE-2025-39854-8ede@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39855",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091905-CVE-2025-39855-fd73@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39856",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091905-CVE-2025-39856-cca3@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39857",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091905-CVE-2025-39857-1658@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39858",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091905-CVE-2025-39858-393c@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39859",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091905-CVE-2025-39859-52d5@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39860",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091906-CVE-2025-39860-2f11@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39861",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091906-CVE-2025-39861-5ba5@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39862",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091906-CVE-2025-39862-5acb@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39863",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091906-CVE-2025-39863-874e@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39864",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091906-CVE-2025-39864-a3a2@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39865",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091906-CVE-2025-39865-3086@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-39866",
        "url": "https://lore.kernel.org/linux-cve-announce/2025091907-CVE-2025-39866-45d3@gregkh/"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-6008 vom 2025-09-23",
        "url": "https://lists.debian.org/debian-security-announce/2025/msg00172.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-6009 vom 2025-09-23",
        "url": "https://lists.debian.org/debian-security-announce/2025/msg00173.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2KERNEL-5.4-2025-110 vom 2025-09-30",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2KERNEL-5.4-2025-110.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2KERNEL-5.15-2025-091 vom 2025-09-30",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2KERNEL-5.15-2025-091.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-20649 vom 2025-10-07",
        "url": "https://linux.oracle.com/errata/ELSA-2025-20649.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4327 vom 2025-10-13",
        "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4328 vom 2025-10-13",
        "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-20716 vom 2025-10-15",
        "url": "https://linux.oracle.com/errata/ELSA-2025-20716.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03615-1 vom 2025-10-16",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BVPLWRQN6MVKFQDJSEKN2JP6PMSGIO4Q/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03600-1 vom 2025-10-15",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/VHWHH7ZSMFJ6PQZ3CBDGGCWHNBCWD26Z/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03601-1 vom 2025-10-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022903.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03614-1 vom 2025-10-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022911.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03628-1 vom 2025-10-17",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/O6BEPQBC4GULLYP5G3VVU4ZS37B7I6EV/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03633-1 vom 2025-10-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022926.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:18281 vom 2025-10-20",
        "url": "https://access.redhat.com/errata/RHSA-2025:18281"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03634-1 vom 2025-10-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022925.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:18318 vom 2025-10-20",
        "url": "https://access.redhat.com/errata/RHSA-2025:18318"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-18318 vom 2025-10-21",
        "url": "https://linux.oracle.com/errata/ELSA-2025-18318.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-18281 vom 2025-10-20",
        "url": "https://linux.oracle.com/errata/ELSA-2025-18281.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:3716-1 vom 2025-10-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022962.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:3751-1 vom 2025-10-23",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NMB6RXALFYMRMM4UK7R54RAQRCZJEBH4/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:3761-1 vom 2025-10-23",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/MLTPAKCOQABZPEY7O35CI42PHK5WNIUQ/"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:18318 vom 2025-10-26",
        "url": "https://errata.build.resf.org/RLSA-2025:18318"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20851-1 vom 2025-10-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023025.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20861-1 vom 2025-10-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023019.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:19102 vom 2025-10-27",
        "url": "https://access.redhat.com/errata/RHSA-2025:19102"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:19103 vom 2025-10-27",
        "url": "https://access.redhat.com/errata/RHSA-2025:19103"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-20719 vom 2025-10-24",
        "url": "https://linux.oracle.com/errata/ELSA-2025-20719.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:19106 vom 2025-10-27",
        "url": "https://access.redhat.com/errata/RHSA-2025:19106"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20870-1 vom 2025-10-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023060.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-19102 vom 2025-10-28",
        "url": "https://linux.oracle.com/errata/ELSA-2025-19102.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-19106 vom 2025-10-28",
        "url": "https://linux.oracle.com/errata/ELSA-2025-19106.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20898-1 vom 2025-10-30",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023116.html"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:19106 vom 2025-11-02",
        "url": "https://errata.build.resf.org/RLSA-2025:19106"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:19102 vom 2025-11-02",
        "url": "https://errata.build.resf.org/RLSA-2025:19102"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:19447 vom 2025-11-03",
        "url": "https://access.redhat.com/errata/RHSA-2025:19447"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:19103 vom 2025-11-02",
        "url": "https://errata.build.resf.org/RLSA-2025:19103"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:19440 vom 2025-11-03",
        "url": "https://access.redhat.com/errata/RHSA-2025:19440"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2025-390 vom 2025-11-05",
        "url": "https://www.dell.com/support/kbdoc/000385230"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-19447 vom 2025-11-04",
        "url": "https://linux.oracle.com/errata/ELSA-2025-19447.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:19962 vom 2025-11-10",
        "url": "https://access.redhat.com/errata/RHSA-2025:19962"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-25755 vom 2025-11-10",
        "url": "https://linux.oracle.com/errata/ELSA-2025-25755.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-25754 vom 2025-11-10",
        "url": "https://linux.oracle.com/errata/ELSA-2025-25754.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-19962 vom 2025-11-11",
        "url": "https://linux.oracle.com/errata/ELSA-2025-19962.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21083 vom 2025-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2025:21083"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21084 vom 2025-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2025:21084"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4057-1 vom 2025-11-11",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023254.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-25757 vom 2025-11-12",
        "url": "https://linux.oracle.com/errata/ELSA-2025-25757.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21118 vom 2025-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2025:21118"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20994-1 vom 2025-11-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023276.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21112 vom 2025-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2025:21112"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20996-1 vom 2025-11-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023275.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21463 vom 2025-11-17",
        "url": "https://access.redhat.com/errata/RHSA-2025:21463"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4132-1 vom 2025-11-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023302.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4128-1 vom 2025-11-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023299.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21760 vom 2025-11-19",
        "url": "https://access.redhat.com/errata/RHSA-2025:21760"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4141-1 vom 2025-11-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023304.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4140-1 vom 2025-11-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023305.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:21926 vom 2025-11-24",
        "url": "https://access.redhat.com/errata/RHSA-2025:21926"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4189-1 vom 2025-11-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023334.html"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2025-20081-1 vom 2025-11-26",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/J4KLZE7HUQJ2N6IQEI3G2KJZ5VB36YBI/"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-21926 vom 2025-11-26",
        "url": "http://linux.oracle.com/errata/ELSA-2025-21926.html"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2025-20091-1 vom 2025-11-27",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/QVNKE6YBHUN7AVUHO7UZCJJGK4HYS62H/"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-21469 vom 2025-11-27",
        "url": "https://linux.oracle.com/errata/ELSA-2025-21469.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-21112 vom 2025-11-27",
        "url": "https://linux.oracle.com/errata/ELSA-2025-21112.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21064-1 vom 2025-11-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023415.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21056-1 vom 2025-11-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023419.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21052-1 vom 2025-11-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023389.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21040-1 vom 2025-11-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023394.html"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:21926 vom 2025-11-28",
        "url": "https://errata.build.resf.org/RLSA-2025:21926"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21080-1 vom 2025-11-28",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023429.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21074-1 vom 2025-11-28",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023431.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4301-1 vom 2025-11-28",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/LLIMXFMWOGTFRJZEC4XPGIMNBCRKQ7IF/"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22405 vom 2025-12-01",
        "url": "https://access.redhat.com/errata/RHSA-2025:22405"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22392 vom 2025-12-01",
        "url": "https://access.redhat.com/errata/RHSA-2025:22392"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-22405 vom 2025-12-02",
        "url": "https://linux.oracle.com/errata/ELSA-2025-22405.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22661 vom 2025-12-03",
        "url": "https://access.redhat.com/errata/RHSA-2025:22661"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-21118 vom 2025-12-04",
        "url": "https://linux.oracle.com/errata/ELSA-2025-21118.html"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:22405 vom 2025-12-04",
        "url": "https://errata.build.resf.org/RLSA-2025:22405"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7909-1 vom 2025-12-04",
        "url": "https://ubuntu.com/security/notices/USN-7909-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7909-2 vom 2025-12-04",
        "url": "https://ubuntu.com/security/notices/USN-7909-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7909-3 vom 2025-12-04",
        "url": "https://ubuntu.com/security/notices/USN-7909-3"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7910-1 vom 2025-12-04",
        "url": "https://ubuntu.com/security/notices/USN-7910-1"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22752 vom 2025-12-04",
        "url": "https://access.redhat.com/errata/RHSA-2025:22752"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-21463 vom 2025-12-05",
        "url": "https://linux.oracle.com/errata/ELSA-2025-21463.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7909-4 vom 2025-12-05",
        "url": "https://ubuntu.com/security/notices/USN-7909-4"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-21931 vom 2025-12-05",
        "url": "https://linux.oracle.com/errata/ELSA-2025-21931.html"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7253912 vom 2025-12-05",
        "url": "https://www.ibm.com/support/pages/node/7253912"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22996 vom 2025-12-10",
        "url": "https://access.redhat.com/errata/RHSA-2025:22996"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22995 vom 2025-12-10",
        "url": "https://access.redhat.com/errata/RHSA-2025:22995"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22999 vom 2025-12-10",
        "url": "https://access.redhat.com/errata/RHSA-2025:22999"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22997 vom 2025-12-10",
        "url": "https://access.redhat.com/errata/RHSA-2025:22997"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21139-1 vom 2025-12-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023515.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21179-1 vom 2025-12-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023499.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21180-1 vom 2025-12-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023498.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:21147-1 vom 2025-12-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023511.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-28049 vom 2025-12-15",
        "url": "https://linux.oracle.com/errata/ELSA-2025-28049.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4393-1 vom 2025-12-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023538.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7933-1 vom 2025-12-15",
        "url": "https://ubuntu.com/security/notices/USN-7933-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7909-5 vom 2025-12-15",
        "url": "https://ubuntu.com/security/notices/USN-7909-5"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23450 vom 2025-12-17",
        "url": "https://access.redhat.com/errata/RHSA-2025:23450"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23422 vom 2025-12-17",
        "url": "https://access.redhat.com/errata/RHSA-2025:23422"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23426 vom 2025-12-17",
        "url": "https://access.redhat.com/errata/RHSA-2025:23426"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7938-1 vom 2025-12-16",
        "url": "https://ubuntu.com/security/notices/USN-7938-1"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23424 vom 2025-12-17",
        "url": "https://access.redhat.com/errata/RHSA-2025:23424"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23423 vom 2025-12-17",
        "url": "https://access.redhat.com/errata/RHSA-2025:23423"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4422-1 vom 2025-12-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023573.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23463 vom 2025-12-17",
        "url": "https://access.redhat.com/errata/RHSA-2025:23463"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23789 vom 2025-12-22",
        "url": "https://access.redhat.com/errata/RHSA-2025:23789"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4505-1 vom 2025-12-23",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/3D5W2444LYTUJVXYGB63LTMU25GRLRJR/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4516-1 vom 2025-12-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023646.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:4521-1 vom 2025-12-24",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023651.html"
      },
      {
        "category": "external",
        "summary": "RedHat Security Advisory",
        "url": "https://access.redhat.com/errata/RHSA-2026:0271"
      }
    ],
    "source_lang": "en-US",
    "title": "Linux Kernel: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-01-07T23:00:00.000+00:00",
      "generator": {
        "date": "2026-01-08T08:12:35.650+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2025-2099",
      "initial_release_date": "2025-09-21T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-09-21T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-09-22T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2025-09-29T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2025-10-06T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-10-12T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2025-10-14T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-10-15T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-10-19T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von SUSE und Red Hat aufgenommen"
        },
        {
          "date": "2025-10-20T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-10-21T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-10-23T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-10-26T23:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Rocky Enterprise Software Foundation, SUSE, Red Hat und Oracle Linux aufgenommen"
        },
        {
          "date": "2025-10-27T23:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Red Hat, SUSE und Oracle Linux aufgenommen"
        },
        {
          "date": "2025-10-28T23:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-10-30T23:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-02T23:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Rocky Enterprise Software Foundation und Red Hat aufgenommen"
        },
        {
          "date": "2025-11-04T23:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Dell und Oracle Linux aufgenommen"
        },
        {
          "date": "2025-11-09T23:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-11-10T23:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-11-11T23:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Red Hat und SUSE aufgenommen"
        },
        {
          "date": "2025-11-12T23:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von SUSE und Red Hat aufgenommen"
        },
        {
          "date": "2025-11-16T23:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-11-18T23:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-19T23:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-23T23:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-11-24T23:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-25T23:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von openSUSE aufgenommen"
        },
        {
          "date": "2025-11-26T23:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-11-27T23:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-30T23:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-12-02T23:00:00.000+00:00",
          "number": "31",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-12-03T23:00:00.000+00:00",
          "number": "32",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-12-04T23:00:00.000+00:00",
          "number": "33",
          "summary": "Neue Updates von Red Hat und Oracle Linux aufgenommen"
        },
        {
          "date": "2025-12-07T23:00:00.000+00:00",
          "number": "34",
          "summary": "Neue Updates von Oracle Linux und IBM aufgenommen"
        },
        {
          "date": "2025-12-09T23:00:00.000+00:00",
          "number": "35",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-12-10T23:00:00.000+00:00",
          "number": "36",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-12-14T23:00:00.000+00:00",
          "number": "37",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-12-15T23:00:00.000+00:00",
          "number": "38",
          "summary": "Neue Updates von SUSE und Ubuntu aufgenommen"
        },
        {
          "date": "2025-12-16T23:00:00.000+00:00",
          "number": "39",
          "summary": "Neue Updates von Red Hat und Ubuntu aufgenommen"
        },
        {
          "date": "2025-12-17T23:00:00.000+00:00",
          "number": "40",
          "summary": "Neue Updates von SUSE und Red Hat aufgenommen"
        },
        {
          "date": "2025-12-21T23:00:00.000+00:00",
          "number": "41",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-12-22T23:00:00.000+00:00",
          "number": "42",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-12-23T23:00:00.000+00:00",
          "number": "43",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-12-28T23:00:00.000+00:00",
          "number": "44",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-01-07T23:00:00.000+00:00",
          "number": "45",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "45"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Appliance \u003c5.32.00.18",
                "product": {
                  "name": "Dell Secure Connect Gateway Appliance \u003c5.32.00.18",
                  "product_id": "T048301"
                }
              },
              {
                "category": "product_version",
                "name": "Appliance 5.32.00.18",
                "product": {
                  "name": "Dell Secure Connect Gateway Appliance 5.32.00.18",
                  "product_id": "T048301-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:dell:secure_connect_gateway:appliance__5.32.00.18"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Secure Connect Gateway"
          }
        ],
        "category": "vendor",
        "name": "Dell"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "IBM QRadar SIEM",
            "product": {
              "name": "IBM QRadar SIEM",
              "product_id": "T021415",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:qradar_siem:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source Linux Kernel",
            "product": {
              "name": "Open Source Linux Kernel",
              "product_id": "T034436",
              "product_identification_helper": {
                "cpe": "cpe:/o:linux:linux_kernel:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "RESF Rocky Linux",
            "product": {
              "name": "RESF Rocky Linux",
              "product_id": "T032255",
              "product_identification_helper": {
                "cpe": "cpe:/o:resf:rocky_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "RESF"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux",
                "product": {
                  "name": "Red Hat Enterprise Linux",
                  "product_id": "67646",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "10",
                "product": {
                  "name": "Red Hat Enterprise Linux 10",
                  "product_id": "T048374",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:10"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "SUSE openSUSE",
            "product": {
              "name": "SUSE openSUSE",
              "product_id": "T027843",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:opensuse:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-39837",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39837"
    },
    {
      "cve": "CVE-2025-39838",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39838"
    },
    {
      "cve": "CVE-2025-39839",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39839"
    },
    {
      "cve": "CVE-2025-39840",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39840"
    },
    {
      "cve": "CVE-2025-39841",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39841"
    },
    {
      "cve": "CVE-2025-39842",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39842"
    },
    {
      "cve": "CVE-2025-39843",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39843"
    },
    {
      "cve": "CVE-2025-39844",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39844"
    },
    {
      "cve": "CVE-2025-39845",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39845"
    },
    {
      "cve": "CVE-2025-39846",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39846"
    },
    {
      "cve": "CVE-2025-39847",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39847"
    },
    {
      "cve": "CVE-2025-39848",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39848"
    },
    {
      "cve": "CVE-2025-39849",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39849"
    },
    {
      "cve": "CVE-2025-39850",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39850"
    },
    {
      "cve": "CVE-2025-39851",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39851"
    },
    {
      "cve": "CVE-2025-39852",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39852"
    },
    {
      "cve": "CVE-2025-39853",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39853"
    },
    {
      "cve": "CVE-2025-39854",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39854"
    },
    {
      "cve": "CVE-2025-39855",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39855"
    },
    {
      "cve": "CVE-2025-39856",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39856"
    },
    {
      "cve": "CVE-2025-39857",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39857"
    },
    {
      "cve": "CVE-2025-39858",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39858"
    },
    {
      "cve": "CVE-2025-39859",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39859"
    },
    {
      "cve": "CVE-2025-39860",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39860"
    },
    {
      "cve": "CVE-2025-39861",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39861"
    },
    {
      "cve": "CVE-2025-39862",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39862"
    },
    {
      "cve": "CVE-2025-39863",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39863"
    },
    {
      "cve": "CVE-2025-39864",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39864"
    },
    {
      "cve": "CVE-2025-39865",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39865"
    },
    {
      "cve": "CVE-2025-39866",
      "product_status": {
        "known_affected": [
          "T034436",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T021415",
          "T027843",
          "398363",
          "T048374",
          "T004914",
          "T032255",
          "T048301"
        ]
      },
      "release_date": "2025-09-21T22:00:00.000+00:00",
      "title": "CVE-2025-39866"
    }
  ]
}

FKIE_CVE-2025-39858

Vulnerability from fkie_nvd - Published: 2025-09-19 16:15 - Updated: 2026-01-14 20:16

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

References

	URL	Tags
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/7b77d8841a98a9f45c8a615222c698df8dec581c	Patch
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/e580beaf43d563aaf457f1c7f934002355ebfe7b	Patch

Impacted products

Vendor	Product	Version
linux	linux_kernel	*
linux	linux_kernel	6.17
linux	linux_kernel	6.17
linux	linux_kernel	6.17
linux	linux_kernel	6.17

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D4C2E438-04A8-4E8E-9CA1-54C86857F8B0",
              "versionEndExcluding": "6.16.6",
              "versionStartIncluding": "6.15",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.17:rc1:*:*:*:*:*:*",
              "matchCriteriaId": "327D22EF-390B-454C-BD31-2ED23C998A1C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.17:rc2:*:*:*:*:*:*",
              "matchCriteriaId": "C730CD9A-D969-4A8E-9522-162AAF7C0EE9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.17:rc3:*:*:*:*:*:*",
              "matchCriteriaId": "39982C4B-716E-4B2F-8196-FA301F47807D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:6.17:rc4:*:*:*:*:*:*",
              "matchCriteriaId": "340BEEA9-D70D-4290-B502-FBB1032353B1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\neth: mlx4: Fix IS_ERR() vs NULL check bug in mlx4_en_create_rx_ring\n\nReplace NULL check with IS_ERR() check after calling page_pool_create()\nsince this function returns error pointers (ERR_PTR).\nUsing NULL check could lead to invalid pointer dereference."
    }
  ],
  "id": "CVE-2025-39858",
  "lastModified": "2026-01-14T20:16:08.887",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-09-19T16:15:44.760",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/7b77d8841a98a9f45c8a615222c698df8dec581c"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/e580beaf43d563aaf457f1c7f934002355ebfe7b"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-476"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-476"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}

GHSA-X732-54Q6-PV67

Vulnerability from github – Published: 2025-09-22 21:30 – Updated: 2025-12-12 21:31

Details

In the Linux kernel, the following vulnerability has been resolved:

eth: mlx4: Fix IS_ERR() vs NULL check bug in mlx4_en_create_rx_ring

Replace NULL check with IS_ERR() check after calling page_pool_create() since this function returns error pointers (ERR_PTR). Using NULL check could lead to invalid pointer dereference.

Severity ?

5.5 (Medium)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-39858"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-476"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-09-19T16:15:44Z",
    "severity": "MODERATE"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\neth: mlx4: Fix IS_ERR() vs NULL check bug in mlx4_en_create_rx_ring\n\nReplace NULL check with IS_ERR() check after calling page_pool_create()\nsince this function returns error pointers (ERR_PTR).\nUsing NULL check could lead to invalid pointer dereference.",
  "id": "GHSA-x732-54q6-pv67",
  "modified": "2025-12-12T21:31:32Z",
  "published": "2025-09-22T21:30:18Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-39858"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/7b77d8841a98a9f45c8a615222c698df8dec581c"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/e580beaf43d563aaf457f1c7f934002355ebfe7b"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-39858 (GCVE-0-2025-39858)

WID-SEC-W-2025-2099

FKIE_CVE-2025-39858

GHSA-X732-54Q6-PV67

Tags

Sightings

Nomenclature