CVE-2025-22026

Advisory lineage Upstream: 0 Downstream: 38

Downstream

DEBIAN-CVE-2025-22026 DLA-4499-1 DSA-6163-1 RHSA-2025:13946 RHSA-2025:14003 RHSA-2025:14005

Analyzed

Published: 16 Apr 2025, 14:11

Last modified:23 May 2026, 15:57

Vulnerability Summary

Overall Risk (default)

low

22/100

CVSS Score

5.5 MEDIUM

v3.1 (nvd)

EPSS Score

0.02% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

16 Apr 2025, 14:11

Published

Vulnerability first disclosed

23 May 2026, 15:57

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: nfsd: don't ignore the return code of svc_proc_register() Currently, nfsd_proc_stat_init() ignores the return value of svc_proc_register(). If the procfile creation fails, then the kernel will WARN when it tries to remove the entry later. Fix nfsd_proc_stat_init() to return the same type of pointer as svc_proc_register(), and fix up nfsd_net_init() to check that and fail the nfsd_net construction if it occurs. svc_proc_register() can fail if the dentry can't be allocated, or if an identical dentry already exists. The second case is pretty unlikely in the nfsd_net construction codepath, so if this happens, return -ENOMEM.

CVSS Metrics

v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.02%• Percentile: 5%

Techniques & Countermeasures

CWE-252•Unchecked Return Value
The product does not check the return value from a method or function, which can prevent it from detecting unexpected states and conditions.

Affected Systems

linux•linux
6f8d6ed3426a17f77628cebfb6a6e2c6f2b2496c | 10ece754df9a799131a1cf3197e9d26c04ddec22 | ≥ 10ece754df9a799131a1cf3197e9d26c04ddec22, < 51da899c209a9624e48be416bd30e7ed5cd6c3d8 | ≥ 6f8d6ed3426a17f77628cebfb6a6e2c6f2b2496c, < 30405b23b4d5e2a596fb756d48119d7293194e75 | ≥ 93483ac5fec62cc1de166051b219d953bb5e4ef4, < 6a59b70fe71ec66c0dd19e2c279c71846a3fb2f0 | ≥ 93483ac5fec62cc1de166051b219d953bb5e4ef4, < e31957a819e60cf0bc9a49408765e6095fd3d046 | ≥ 93483ac5fec62cc1de166051b219d953bb5e4ef4, < 9d9456185fd5f1891c74354ee297f19538141ead | ≥ 93483ac5fec62cc1de166051b219d953bb5e4ef4, < 930b64ca0c511521f0abdd1d57ce52b2a6e3476b | 5545496966631cd40ad3aa6450be56d0e5773d10 | 73c43bccf25cec9cdec62fc22a513c28a4b28390 | b7b05f98f3f06fea3986b46e5c7fe2928676b02d | ≥ 6.1.106, < 6.1.164 | ≥ 6.6.47, < 6.6.125 | ≥ 5.10.226, < 5.11 | ≥ 5.15.166, < 5.16 | ≥ 6.8.10, < 6.9 | 6.9
linux•linux_kernel
< 6.12.24 | ≥ 6.13, < 6.13.12 | ≥ 6.14, < 6.14.2