[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2025-37894":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":40,"related":41,"reserved_at":9,"published_at":42,"modified_at":43,"state":44,"summary":45,"references_raw":54,"kevs":69,"epss":70,"epss_history":73,"metrics":331,"affected":337},"CVE-2025-37894","In the Linux kernel, the following vulnerability has been resolved:\n\nnet: use sock_gen_put() when sk_state is TCP_TIME_WAIT\n\nIt is possible for a pointer of type struct inet_timewait_sock to be\nreturned from the functions __inet_lookup_established() and\n__inet6_lookup_established(). This can cause a crash when the\nreturned pointer is of type struct inet_timewait_sock and\nsock_put() is called on it. The following is a crash call stack that\nshows sk->sk_wmem_alloc being accessed in sk_free() during the call to\nsock_put() on a struct inet_timewait_sock pointer. To avoid this issue,\nuse sock_gen_put() instead of sock_put() when sk->sk_state\nis TCP_TIME_WAIT.\n\nmrdump.ko        ipanic() + 120\nvmlinux          notifier_call_chain(nr_to_call=-1, nr_calls=0) + 132\nvmlinux          atomic_notifier_call_chain(val=0) + 56\nvmlinux          panic() + 344\nvmlinux          add_taint() + 164\nvmlinux          end_report() + 136\nvmlinux          kasan_report(size=0) + 236\nvmlinux          report_tag_fault() + 16\nvmlinux          do_tag_recovery() + 16\nvmlinux          __do_kernel_fault() + 88\nvmlinux          do_bad_area() + 28\nvmlinux          do_tag_check_fault() + 60\nvmlinux          do_mem_abort() + 80\nvmlinux          el1_abort() + 56\nvmlinux          el1h_64_sync_handler() + 124\nvmlinux        > 0xFFFFFFC080011294()\nvmlinux          __lse_atomic_fetch_add_release(v=0xF2FFFF82A896087C)\nvmlinux          __lse_atomic_fetch_sub_release(v=0xF2FFFF82A896087C)\nvmlinux          arch_atomic_fetch_sub_release(i=1, v=0xF2FFFF82A896087C)\n+ 8\nvmlinux          raw_atomic_fetch_sub_release(i=1, v=0xF2FFFF82A896087C)\n+ 8\nvmlinux          atomic_fetch_sub_release(i=1, v=0xF2FFFF82A896087C) + 8\nvmlinux          __refcount_sub_and_test(i=1, r=0xF2FFFF82A896087C,\noldp=0) + 8\nvmlinux          __refcount_dec_and_test(r=0xF2FFFF82A896087C, oldp=0) + 8\nvmlinux          refcount_dec_and_test(r=0xF2FFFF82A896087C) + 8\nvmlinux          sk_free(sk=0xF2FFFF82A8960700) + 28\nvmlinux          sock_put() + 48\nvmlinux          tcp6_check_fraglist_gro() + 236\nvmlinux          tcp6_gro_receive() + 624\nvmlinux          ipv6_gro_receive() + 912\nvmlinux          dev_gro_receive() + 1116\nvmlinux          napi_gro_receive() + 196\nccmni.ko         ccmni_rx_callback() + 208\nccmni.ko         ccmni_queue_recv_skb() + 388\nccci_dpmaif.ko   dpmaif_rxq_push_thread() + 1088\nvmlinux          kthread() + 268\nvmlinux          0xFFFFFFC08001F30C()",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-476","NULL Pointer Dereference","The product dereferences a pointer that it expects to be valid but is NULL.","weakness","Stable","Base","Medium",[],[],[],[],[24,26,28,30,32,34,36,38],{"_key":25},"USN-7649-1",{"_key":27},"USN-7649-2",{"_key":29},"USN-7665-1",{"_key":31},"USN-7721-1",{"_key":33},"DEBIAN-CVE-2025-37894",{"_key":35},"UBUNTU-CVE-2025-37894",{"_key":37},"USN-7650-1",{"_key":39},"USN-7665-2",[],[],"2025-05-20T15:21:31.283Z","2026-05-11T21:17:11.108Z","Analyzed",{"cisa_kev":46,"cisa_ransomware":46,"cisa_vendor":9,"epss_severity":47,"epss_score":48,"severity":49,"severity_score":50,"severity_version":51,"severity_source":52,"severity_vector":53,"severity_status":44},false,"low",0.00049,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[55,61,65],{"url":56,"sources":57,"tags":59},"https://git.kernel.org/stable/c/c0dba059b118b5206e755042b15b49368a388898",[58,52],"cve.org",[60],"Patch",{"url":62,"sources":63,"tags":64},"https://git.kernel.org/stable/c/786650e644c5b1c063921799ca203c0b8670d79a",[58,52],[60],{"url":66,"sources":67,"tags":68},"https://git.kernel.org/stable/c/f920436a44295ca791ebb6dae3f4190142eec703",[58,52],[60],[],{"date":71,"score":48,"percentile":72},"2026-06-04",0.15613,[74,78,81,84,87,90,92,95,98,101,105,108,111,114,117,121,124,127,130,133,136,139,142,145,148,151,154,157,160,163,166,169,172,175,178,180,183,186,189,192,194,198,201,204,207,210,213,216,219,222,224,227,230,232,235,237,239,241,244,247,250,252,255,258,261,264,266,268,271,274,276,278,280,283,286,289,292,295,297,299,301,304,307,310,313,316,319,322,325,328],{"date":75,"score":76,"percentile":77},"2025-11-04",0.00024,0.05027,{"date":79,"score":76,"percentile":80},"2025-11-05",0.05029,{"date":82,"score":76,"percentile":83},"2025-11-06",0.05144,{"date":85,"score":76,"percentile":86},"2025-11-07",0.05149,{"date":88,"score":76,"percentile":89},"2025-11-08",0.0514,{"date":91,"score":76,"percentile":83},"2025-11-09",{"date":93,"score":76,"percentile":94},"2025-11-10",0.05121,{"date":96,"score":76,"percentile":97},"2025-11-11",0.05152,{"date":99,"score":76,"percentile":100},"2025-11-12",0.05154,{"date":102,"score":103,"percentile":104},"2025-11-13",0.00012,0.01317,{"date":106,"score":103,"percentile":107},"2025-11-14",0.01332,{"date":109,"score":103,"percentile":110},"2025-11-15",0.01352,{"date":112,"score":103,"percentile":113},"2025-11-16",0.01351,{"date":115,"score":103,"percentile":116},"2025-11-17",0.01343,{"date":118,"score":119,"percentile":120},"2025-11-18",0.00026,0.03529,{"date":122,"score":119,"percentile":123},"2025-11-19",0.0358,{"date":125,"score":119,"percentile":126},"2025-11-20",0.03647,{"date":128,"score":103,"percentile":129},"2025-11-21",0.01399,{"date":131,"score":103,"percentile":132},"2025-11-22",0.01397,{"date":134,"score":103,"percentile":135},"2025-11-23",0.01384,{"date":137,"score":103,"percentile":138},"2025-11-24",0.01376,{"date":140,"score":103,"percentile":141},"2025-11-25",0.01363,{"date":143,"score":103,"percentile":144},"2025-11-26",0.01305,{"date":146,"score":103,"percentile":147},"2025-11-27",0.01303,{"date":149,"score":103,"percentile":150},"2025-11-28",0.01307,{"date":152,"score":103,"percentile":153},"2025-11-29",0.01344,{"date":155,"score":103,"percentile":156},"2025-11-30",0.01353,{"date":158,"score":103,"percentile":159},"2025-12-01",0.0138,{"date":161,"score":103,"percentile":162},"2025-12-02",0.01373,{"date":164,"score":103,"percentile":165},"2025-12-03",0.01374,{"date":167,"score":103,"percentile":168},"2025-12-04",0.01349,{"date":170,"score":103,"percentile":171},"2025-12-05",0.01365,{"date":173,"score":103,"percentile":174},"2025-12-06",0.01369,{"date":176,"score":103,"percentile":177},"2025-12-07",0.01367,{"date":179,"score":103,"percentile":177},"2025-12-08",{"date":181,"score":103,"percentile":182},"2025-12-09",0.01381,{"date":184,"score":103,"percentile":185},"2025-12-10",0.01392,{"date":187,"score":103,"percentile":188},"2025-12-11",0.01386,{"date":190,"score":103,"percentile":191},"2025-12-12",0.01387,{"date":193,"score":103,"percentile":165},"2025-12-13",{"date":195,"score":196,"percentile":197},"2025-12-14",0.00013,0.01636,{"date":199,"score":196,"percentile":200},"2025-12-15",0.01631,{"date":202,"score":196,"percentile":203},"2025-12-16",0.01641,{"date":205,"score":196,"percentile":206},"2025-12-17",0.01653,{"date":208,"score":196,"percentile":209},"2025-12-18",0.01642,{"date":211,"score":196,"percentile":212},"2025-12-19",0.01646,{"date":214,"score":196,"percentile":215},"2025-12-20",0.01648,{"date":217,"score":196,"percentile":218},"2025-12-21",0.01655,{"date":220,"score":196,"percentile":221},"2025-12-22",0.01657,{"date":223,"score":196,"percentile":221},"2025-12-23",{"date":225,"score":196,"percentile":226},"2025-12-24",0.0166,{"date":228,"score":196,"percentile":229},"2025-12-25",0.01666,{"date":231,"score":196,"percentile":229},"2025-12-26",{"date":233,"score":196,"percentile":234},"2025-12-27",0.01659,{"date":236,"score":196,"percentile":226},"2025-12-28",{"date":238,"score":196,"percentile":206},"2025-12-29",{"date":240,"score":196,"percentile":212},"2025-12-30",{"date":242,"score":196,"percentile":243},"2025-12-31",0.01643,{"date":245,"score":196,"percentile":246},"2026-01-01",0.01663,{"date":248,"score":196,"percentile":249},"2026-01-02",0.01661,{"date":251,"score":196,"percentile":246},"2026-01-03",{"date":253,"score":196,"percentile":254},"2026-01-04",0.01626,{"date":256,"score":196,"percentile":257},"2026-01-05",0.01623,{"date":259,"score":196,"percentile":260},"2026-01-06",0.01619,{"date":262,"score":196,"percentile":263},"2026-01-07",0.0163,{"date":265,"score":196,"percentile":243},"2026-01-08",{"date":267,"score":196,"percentile":221},"2026-01-09",{"date":269,"score":196,"percentile":270},"2026-01-10",0.01671,{"date":272,"score":196,"percentile":273},"2026-01-11",0.01664,{"date":275,"score":196,"percentile":234},"2026-01-12",{"date":277,"score":196,"percentile":206},"2026-01-13",{"date":279,"score":196,"percentile":249},"2026-01-14",{"date":281,"score":196,"percentile":282},"2026-01-15",0.01669,{"date":284,"score":196,"percentile":285},"2026-01-16",0.01683,{"date":287,"score":196,"percentile":288},"2026-01-17",0.01686,{"date":290,"score":196,"percentile":291},"2026-01-18",0.01695,{"date":293,"score":196,"percentile":294},"2026-01-19",0.01684,{"date":296,"score":196,"percentile":229},"2026-01-20",{"date":298,"score":196,"percentile":221},"2026-01-21",{"date":300,"score":196,"percentile":218},"2026-01-22",{"date":302,"score":196,"percentile":303},"2026-01-23",0.01756,{"date":305,"score":196,"percentile":306},"2026-01-24",0.01767,{"date":308,"score":196,"percentile":309},"2026-01-25",0.01763,{"date":311,"score":196,"percentile":312},"2026-01-26",0.0176,{"date":314,"score":196,"percentile":315},"2026-01-27",0.01755,{"date":317,"score":196,"percentile":318},"2026-01-28",0.01754,{"date":320,"score":196,"percentile":321},"2026-01-29",0.01769,{"date":323,"score":196,"percentile":324},"2026-01-30",0.01773,{"date":326,"score":196,"percentile":327},"2026-01-31",0.01795,{"date":329,"score":196,"percentile":330},"2026-02-01",0.01828,[332],{"source":52,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":333,"cvss_v4_0":9},{"baseScore":50,"baseSeverity":334,"vectorString":53,"impactScore":335,"exploitabilityScore":336},"MEDIUM",6,4.6,[338,358],{"ecosystem":9,"name":339,"vendor":340,"product":340,"cpe_part":341,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":342},"Linux","linux","a",[343,350,353,356],{"version":344,"is_range":345,"range_type":58,"version_start":346,"version_start_type":347,"version_end":348,"version_end_type":349,"fixed_in":9},">= c9d1d23e5239f41700be69133a5769ac5ebc88a8, \u003C c0dba059b118b5206e755042b15b49368a388898",true,"c9d1d23e5239f41700be69133a5769ac5ebc88a8","including","c0dba059b118b5206e755042b15b49368a388898","excluding",{"version":351,"is_range":345,"range_type":58,"version_start":346,"version_start_type":347,"version_end":352,"version_end_type":349,"fixed_in":9},">= c9d1d23e5239f41700be69133a5769ac5ebc88a8, \u003C 786650e644c5b1c063921799ca203c0b8670d79a","786650e644c5b1c063921799ca203c0b8670d79a",{"version":354,"is_range":345,"range_type":58,"version_start":346,"version_start_type":347,"version_end":355,"version_end_type":349,"fixed_in":9},">= c9d1d23e5239f41700be69133a5769ac5ebc88a8, \u003C f920436a44295ca791ebb6dae3f4190142eec703","f920436a44295ca791ebb6dae3f4190142eec703",{"version":357,"is_range":46,"range_type":58,"version_start":357,"version_start_type":347,"version_end":357,"version_end_type":347,"fixed_in":9},"6.10",{"ecosystem":9,"name":359,"vendor":340,"product":360,"cpe_part":361,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":362},"linux kernel","linux_kernel","o",[363,367,371,373,375,377],{"version":364,"is_range":345,"range_type":365,"version_start":357,"version_start_type":347,"version_end":366,"version_end_type":349,"fixed_in":9},"gte6.10_lt6.12.28","cpe","6.12.28",{"version":368,"is_range":345,"range_type":365,"version_start":369,"version_start_type":347,"version_end":370,"version_end_type":349,"fixed_in":9},"gte6.13_lt6.14.6","6.13","6.14.6",{"version":372,"is_range":46,"range_type":365,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.15:rc1",{"version":374,"is_range":46,"range_type":365,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.15:rc2",{"version":376,"is_range":46,"range_type":365,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.15:rc3",{"version":378,"is_range":46,"range_type":365,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.15:rc4"]