-

CVE-2025-39951

EPSS 0.05%
Veröffentlicht 04.10.2025 07:31:11
Zuletzt bearbeitet 06.10.2025 14:56:47
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

um: virtio_uml: Fix use-after-free after put_device in probe

When register_virtio_device() fails in virtio_uml_probe(),
the code sets vu_dev->registered = 1 even though
the device was not successfully registered.
This can lead to use-after-free or other issues.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 10

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 14c231959a16ca41bfdcaede72483362a8c645d7

Version 04e5b1fb01834a602acaae2276b67a783a8c6159

Status affected

Version < 5e94e44c9cb30d7a383d8ac227f24a8c9326b770

Version 04e5b1fb01834a602acaae2276b67a783a8c6159

Status affected

Version < aaf900a83508c8cd5cdf765e7749f9076196ec7f

Version 04e5b1fb01834a602acaae2276b67a783a8c6159

Status affected

Version < 4f364023ddcfe83f7073b973a9cb98584b7f2a46

Version 04e5b1fb01834a602acaae2276b67a783a8c6159

Status affected

Version < 00e98b5a69034b251bb36dc6e7123d7648e218e4

Version 04e5b1fb01834a602acaae2276b67a783a8c6159

Status affected

Version < c2ff91255e0157b356cff115d8dc3eeb5162edf2

Version 04e5b1fb01834a602acaae2276b67a783a8c6159

Status affected

Version < 7ebf70cf181651fe3f2e44e95e7e5073d594c9c0

Version 04e5b1fb01834a602acaae2276b67a783a8c6159

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.5

Status affected

Version < 5.5

Version 0

Status unaffected

Version <= 5.10.*

Version 5.10.245

Status unaffected

Version <= 5.15.*

Version 5.15.194

Status unaffected

Version <= 6.1.*

Version 6.1.154

Status unaffected

Version <= 6.6.*

Version 6.6.108

Status unaffected

Version <= 6.12.*

Version 6.12.49

Status unaffected

Version <= 6.16.*

Version 6.16.9

Status unaffected

Version <= *

Version 6.17

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.166

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/14c231959a16ca41bfdcaede72483362a8c645d7

https://git.kernel.org/stable/c/5e94e44c9cb30d7a383d8ac227f24a8c9326b770

https://git.kernel.org/stable/c/aaf900a83508c8cd5cdf765e7749f9076196ec7f

https://git.kernel.org/stable/c/4f364023ddcfe83f7073b973a9cb98584b7f2a46

https://git.kernel.org/stable/c/00e98b5a69034b251bb36dc6e7123d7648e218e4

https://git.kernel.org/stable/c/c2ff91255e0157b356cff115d8dc3eeb5162edf2

https://git.kernel.org/stable/c/7ebf70cf181651fe3f2e44e95e7e5073d594c9c0

https://nvd.nist.gov/vuln/detail/CVE-2025-39951

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-39951

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-39951

EUVD