CVE-2025-38451Linux vulnerability

17 documents7 sources
Severity
5.5MEDIUMNVD
OSV3.2
EPSS
0.0%
top 93.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedJul 25
Latest updateDec 15

Description

In the Linux kernel, the following vulnerability has been resolved: md/md-bitmap: fix GPF in bitmap_get_stats() The commit message of commit 6ec1f0239485 ("md/md-bitmap: fix stats collection for external bitmaps") states: Remove the external bitmap check as the statistics should be available regardless of bitmap storage location. Return -EINVAL only for invalid bitmap with no storage (neither in superblock nor in external file). But, the code does not adhere to the above, as it does only ch

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

NVDlinux/linux_kernel6.1.1356.1.146+6
Debianlinux/linux_kernel< 6.1.147-1+2
CVEListV5linux/linux065f4b1cd41d03702426af44193894b925607073a23b16ba3274961494f5ad236345d238364349ff+6

Also affects: Debian Linux 11.0

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

9
OSV
linux-azure, linux-azure-6.14 vulnerabilities2025-12-15
OSV
linux-gcp-6.14, linux-raspi vulnerabilities2025-12-04
OSV
linux-aws-6.14, linux-oracle-6.14 vulnerabilities2025-11-26
OSV
linux-oem-6.14 vulnerabilities2025-11-21
OSV
linux, linux-aws, linux-gcp, linux-hwe-6.14, linux-oracle, linux-realtime vulnerabilities2025-11-21

📋Vendor Advisories

7
Ubuntu
Linux kernel (Azure) vulnerabilities2025-12-15
Ubuntu
Linux kernel vulnerabilities2025-12-04
Ubuntu
Linux kernel vulnerabilities2025-11-26
Ubuntu
Linux kernel (Real-time) vulnerabilities2025-11-21
Ubuntu
Linux kernel (OEM) vulnerabilities2025-11-21
CVE-2025-38451 — Linux vulnerability | cvebase