-

CVE-2025-38202

EPSS 0.03%
Veröffentlicht 04.07.2025 13:37:23
Zuletzt bearbeitet 08.07.2025 16:18:53
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

bpf: Check rcu_read_lock_trace_held() in bpf_map_lookup_percpu_elem()

bpf_map_lookup_percpu_elem() helper is also available for sleepable bpf
program. When BPF JIT is disabled or under 32-bit host,
bpf_map_lookup_percpu_elem() will not be inlined. Using it in a
sleepable bpf program will trigger the warning in
bpf_map_lookup_percpu_elem(), because the bpf program only holds
rcu_read_lock_trace lock. Therefore, add the missed check.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 8

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 2f8c69a72e8ad87b36b8052f789da3cc2b2e186c

Version 07343110b293456d30393e89b86c4dee1ac051c8

Status affected

Version < 7bf4461f1c97207fda757014690d55a447ce859f

Version 07343110b293456d30393e89b86c4dee1ac051c8

Status affected

Version < 2d834477bbc1e8b8a59ff8b0c081529d6bed7b22

Version 07343110b293456d30393e89b86c4dee1ac051c8

Status affected

Version < b522d4d334f206284b1a44b0b0b2f99fd443b39b

Version 07343110b293456d30393e89b86c4dee1ac051c8

Status affected

Version < d4965578267e2e81f67c86e2608481e77e9c8569

Version 07343110b293456d30393e89b86c4dee1ac051c8

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.19

Status affected

Version < 5.19

Version 0

Status unaffected

Version <= 6.1.*

Version 6.1.142

Status unaffected

Version <= 6.6.*

Version 6.6.95

Status unaffected

Version <= 6.12.*

Version 6.12.35

Status unaffected

Version <= 6.15.*

Version 6.15.4

Status unaffected

Version <= *

Version 6.16

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.059

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/2f8c69a72e8ad87b36b8052f789da3cc2b2e186c

https://git.kernel.org/stable/c/7bf4461f1c97207fda757014690d55a447ce859f

https://git.kernel.org/stable/c/2d834477bbc1e8b8a59ff8b0c081529d6bed7b22

https://git.kernel.org/stable/c/b522d4d334f206284b1a44b0b0b2f99fd443b39b

https://git.kernel.org/stable/c/d4965578267e2e81f67c86e2608481e77e9c8569

https://nvd.nist.gov/vuln/detail/CVE-2025-38202

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38202

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38202

EUVD