[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2025-38141":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":58,"related":59,"reserved_at":9,"published_at":64,"modified_at":65,"state":66,"summary":67,"references_raw":76,"kevs":91,"epss":92,"epss_history":95,"metrics":356,"affected":362},"CVE-2025-38141","In the Linux kernel, the following vulnerability has been resolved:\n\ndm: fix dm_blk_report_zones\n\nIf dm_get_live_table() returned NULL, dm_put_live_table() was never\ncalled. Also, it is possible that md->zone_revalidate_map will change\nwhile calling this function. Only read it once, so that we are always\nusing the same value. Otherwise we might miss a call to\ndm_put_live_table().\n\nFinally, while md->zone_revalidate_map is set and a process is calling\nblk_revalidate_disk_zones() to set up the zone append emulation\nresources, it is possible that another process, perhaps triggered by\nblkdev_report_zones_ioctl(), will call dm_blk_report_zones(). If\nblk_revalidate_disk_zones() fails, these resources can be freed while\nthe other process is still using them, causing a use-after-free error.\n\nblk_revalidate_disk_zones() will only ever be called when initially\nsetting up the zone append emulation resources, such as when setting up\na zoned dm-crypt table for the first time. Further table swaps will not\nset md->zone_revalidate_map or call blk_revalidate_disk_zones().\nHowever it must be called using the new table (referenced by\nmd->zone_revalidate_map) and the new queue limits while the DM device is\nsuspended. dm_blk_report_zones() needs some way to distinguish between a\ncall from blk_revalidate_disk_zones(), which must be allowed to use\nmd->zone_revalidate_map to access this not yet activated table, and all\nother calls to dm_blk_report_zones(), which should not be allowed while\nthe device is suspended and cannot use md->zone_revalidate_map, since\nthe zone resources might be freed by the process currently calling\nblk_revalidate_disk_zones().\n\nSolve this by tracking the process that sets md->zone_revalidate_map in\ndm_revalidate_zones() and only allowing that process to make use of it\nin dm_blk_report_zones().",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-416","Use After Free","The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory \"belongs\" to the code that operates on the new pointer.","weakness","Stable","Variant","High",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56],{"_key":25},"USN-7770-1",{"_key":27},"USN-7789-2",{"_key":29},"SUSE-SU-2025:21074-1",{"_key":31},"SUSE-SU-2025:21139-1",{"_key":33},"SUSE-SU-2025:21179-1",{"_key":35},"OPENSUSE-SU-2025:20081-1",{"_key":37},"RHSA-2026:6193",{"_key":39},"DEBIAN-CVE-2025-38141",{"_key":41},"RHSA-2026:4012",{"_key":43},"RHSA-2026:4011",{"_key":45},"RHSA-2026:1143",{"_key":47},"UBUNTU-CVE-2025-38141",{"_key":49},"USN-7769-1",{"_key":51},"USN-7769-2",{"_key":53},"USN-7769-3",{"_key":55},"USN-7771-1",{"_key":57},"USN-7789-1",[],[60,61,62,63],{"_key":29},{"_key":31},{"_key":33},{"_key":35},"2025-07-03T08:35:42.787Z","2026-05-11T21:22:03.351Z","Analyzed",{"cisa_kev":68,"cisa_ransomware":68,"cisa_vendor":9,"epss_severity":69,"epss_score":70,"severity":71,"severity_score":72,"severity_version":73,"severity_source":74,"severity_vector":75,"severity_status":66},false,"low",0.00052,"high",7.8,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[77,83,87],{"url":78,"sources":79,"tags":81},"https://git.kernel.org/stable/c/f9c1bdf24615303d48a2d0fd629c88f3189563aa",[80,74],"cve.org",[82],"Patch",{"url":84,"sources":85,"tags":86},"https://git.kernel.org/stable/c/d19bc1b4dd5f322980b1f05f79b2ea4f0db10920",[80,74],[82],{"url":88,"sources":89,"tags":90},"https://git.kernel.org/stable/c/37f53a2c60d03743e0eacf7a0c01c279776fef4e",[80,74],[82],[],{"date":93,"score":70,"percentile":94},"2026-06-03",0.16474,[96,100,103,106,109,111,114,117,120,123,126,129,132,135,138,141,144,147,151,154,157,160,163,166,169,172,176,179,182,185,188,191,194,197,200,203,206,209,213,216,219,222,225,228,231,233,235,238,241,244,247,250,253,255,258,260,262,264,267,269,272,275,277,280,283,285,287,290,293,296,299,302,304,307,310,313,316,319,321,323,326,328,331,334,336,340,343,347,350,353],{"date":97,"score":98,"percentile":99},"2025-11-04",0.00032,0.08272,{"date":101,"score":98,"percentile":102},"2025-11-05",0.08283,{"date":104,"score":98,"percentile":105},"2025-11-06",0.08401,{"date":107,"score":98,"percentile":108},"2025-11-07",0.0842,{"date":110,"score":98,"percentile":108},"2025-11-08",{"date":112,"score":98,"percentile":113},"2025-11-09",0.08388,{"date":115,"score":98,"percentile":116},"2025-11-10",0.08347,{"date":118,"score":98,"percentile":119},"2025-11-11",0.08373,{"date":121,"score":98,"percentile":122},"2025-11-12",0.08408,{"date":124,"score":98,"percentile":125},"2025-11-13",0.08452,{"date":127,"score":98,"percentile":128},"2025-11-14",0.08501,{"date":130,"score":98,"percentile":131},"2025-11-15",0.08528,{"date":133,"score":98,"percentile":134},"2025-11-16",0.0854,{"date":136,"score":98,"percentile":137},"2025-11-17",0.08538,{"date":139,"score":98,"percentile":140},"2025-11-18",0.05018,{"date":142,"score":98,"percentile":143},"2025-11-19",0.05052,{"date":145,"score":98,"percentile":146},"2025-11-20",0.05102,{"date":148,"score":149,"percentile":150},"2025-11-21",0.00022,0.04908,{"date":152,"score":149,"percentile":153},"2025-11-22",0.04919,{"date":155,"score":149,"percentile":156},"2025-11-23",0.04911,{"date":158,"score":149,"percentile":159},"2025-11-24",0.04896,{"date":161,"score":149,"percentile":162},"2025-11-25",0.04907,{"date":164,"score":149,"percentile":165},"2025-11-26",0.04944,{"date":167,"score":149,"percentile":168},"2025-11-27",0.04963,{"date":170,"score":149,"percentile":171},"2025-11-28",0.04949,{"date":173,"score":174,"percentile":175},"2025-11-29",0.00011,0.00974,{"date":177,"score":174,"percentile":178},"2025-11-30",0.00885,{"date":180,"score":174,"percentile":181},"2025-12-01",0.00907,{"date":183,"score":174,"percentile":184},"2025-12-02",0.00902,{"date":186,"score":174,"percentile":187},"2025-12-03",0.00904,{"date":189,"score":174,"percentile":190},"2025-12-04",0.0089,{"date":192,"score":174,"percentile":193},"2025-12-05",0.00896,{"date":195,"score":174,"percentile":196},"2025-12-06",0.00897,{"date":198,"score":174,"percentile":199},"2025-12-07",0.00903,{"date":201,"score":174,"percentile":202},"2025-12-08",0.00908,{"date":204,"score":174,"percentile":205},"2025-12-09",0.00921,{"date":207,"score":174,"percentile":208},"2025-12-10",0.00931,{"date":210,"score":211,"percentile":212},"2025-12-11",0.00012,0.01404,{"date":214,"score":211,"percentile":215},"2025-12-12",0.01408,{"date":217,"score":211,"percentile":218},"2025-12-13",0.01395,{"date":220,"score":211,"percentile":221},"2025-12-14",0.01387,{"date":223,"score":211,"percentile":224},"2025-12-15",0.01383,{"date":226,"score":211,"percentile":227},"2025-12-16",0.01389,{"date":229,"score":211,"percentile":230},"2025-12-17",0.01392,{"date":232,"score":211,"percentile":224},"2025-12-18",{"date":234,"score":211,"percentile":221},"2025-12-19",{"date":236,"score":211,"percentile":237},"2025-12-20",0.01388,{"date":239,"score":211,"percentile":240},"2025-12-21",0.01398,{"date":242,"score":211,"percentile":243},"2025-12-22",0.014,{"date":245,"score":211,"percentile":246},"2025-12-23",0.01399,{"date":248,"score":211,"percentile":249},"2025-12-24",0.01402,{"date":251,"score":211,"percentile":252},"2025-12-25",0.01406,{"date":254,"score":211,"percentile":215},"2025-12-26",{"date":256,"score":211,"percentile":257},"2025-12-27",0.01403,{"date":259,"score":211,"percentile":249},"2025-12-28",{"date":261,"score":211,"percentile":230},"2025-12-29",{"date":263,"score":211,"percentile":237},"2025-12-30",{"date":265,"score":211,"percentile":266},"2025-12-31",0.01385,{"date":268,"score":211,"percentile":252},"2026-01-01",{"date":270,"score":211,"percentile":271},"2026-01-02",0.01409,{"date":273,"score":211,"percentile":274},"2026-01-03",0.01412,{"date":276,"score":211,"percentile":224},"2026-01-04",{"date":278,"score":211,"percentile":279},"2026-01-05",0.01391,{"date":281,"score":211,"percentile":282},"2026-01-06",0.01386,{"date":284,"score":211,"percentile":279},"2026-01-07",{"date":286,"score":211,"percentile":252},"2026-01-08",{"date":288,"score":211,"percentile":289},"2026-01-09",0.01421,{"date":291,"score":211,"percentile":292},"2026-01-10",0.01432,{"date":294,"score":211,"percentile":295},"2026-01-11",0.0143,{"date":297,"score":211,"percentile":298},"2026-01-12",0.01415,{"date":300,"score":211,"percentile":301},"2026-01-13",0.01413,{"date":303,"score":211,"percentile":298},"2026-01-14",{"date":305,"score":211,"percentile":306},"2026-01-15",0.01426,{"date":308,"score":211,"percentile":309},"2026-01-16",0.01435,{"date":311,"score":211,"percentile":312},"2026-01-17",0.01438,{"date":314,"score":211,"percentile":315},"2026-01-18",0.0145,{"date":317,"score":211,"percentile":318},"2026-01-19",0.01439,{"date":320,"score":211,"percentile":306},"2026-01-20",{"date":322,"score":211,"percentile":289},"2026-01-21",{"date":324,"score":211,"percentile":325},"2026-01-22",0.01424,{"date":327,"score":211,"percentile":312},"2026-01-23",{"date":329,"score":211,"percentile":330},"2026-01-24",0.01444,{"date":332,"score":211,"percentile":333},"2026-01-25",0.01443,{"date":335,"score":211,"percentile":318},"2026-01-26",{"date":337,"score":338,"percentile":339},"2026-01-27",0.00015,0.02134,{"date":341,"score":338,"percentile":342},"2026-01-28",0.02137,{"date":344,"score":345,"percentile":346},"2026-01-29",0.00014,0.01929,{"date":348,"score":345,"percentile":349},"2026-01-30",0.01931,{"date":351,"score":345,"percentile":352},"2026-01-31",0.01952,{"date":354,"score":345,"percentile":355},"2026-02-01",0.01981,[357],{"source":74,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":358,"cvss_v4_0":9},{"baseScore":72,"baseSeverity":359,"vectorString":75,"impactScore":360,"exploitabilityScore":361},"HIGH",9.8,4.6,[363,383],{"ecosystem":9,"name":364,"vendor":365,"product":365,"cpe_part":366,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":367},"Linux","linux","a",[368,375,378,381],{"version":369,"is_range":370,"range_type":80,"version_start":371,"version_start_type":372,"version_end":373,"version_end_type":374,"fixed_in":9},">= f211268ed1f9bdf48f06a3ead5f5d88437450579, \u003C f9c1bdf24615303d48a2d0fd629c88f3189563aa",true,"f211268ed1f9bdf48f06a3ead5f5d88437450579","including","f9c1bdf24615303d48a2d0fd629c88f3189563aa","excluding",{"version":376,"is_range":370,"range_type":80,"version_start":371,"version_start_type":372,"version_end":377,"version_end_type":374,"fixed_in":9},">= f211268ed1f9bdf48f06a3ead5f5d88437450579, \u003C d19bc1b4dd5f322980b1f05f79b2ea4f0db10920","d19bc1b4dd5f322980b1f05f79b2ea4f0db10920",{"version":379,"is_range":370,"range_type":80,"version_start":371,"version_start_type":372,"version_end":380,"version_end_type":374,"fixed_in":9},">= f211268ed1f9bdf48f06a3ead5f5d88437450579, \u003C 37f53a2c60d03743e0eacf7a0c01c279776fef4e","37f53a2c60d03743e0eacf7a0c01c279776fef4e",{"version":382,"is_range":68,"range_type":80,"version_start":382,"version_start_type":372,"version_end":382,"version_end_type":372,"fixed_in":9},"6.10",{"ecosystem":9,"name":384,"vendor":365,"product":385,"cpe_part":386,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":387},"linux kernel","linux_kernel","o",[388,392],{"version":389,"is_range":370,"range_type":390,"version_start":382,"version_start_type":372,"version_end":391,"version_end_type":374,"fixed_in":9},"gte6.10_lt6.12.34","cpe","6.12.34",{"version":393,"is_range":370,"range_type":390,"version_start":394,"version_start_type":372,"version_end":395,"version_end_type":374,"fixed_in":9},"gte6.13_lt6.15.3","6.13","6.15.3"]