[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2025-40028":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":14,"duplicates":29,"related":30,"reserved_at":9,"published_at":33,"modified_at":34,"state":35,"summary":36,"references_raw":40,"kevs":59,"epss":60,"epss_history":63,"metrics":335,"affected":336},"CVE-2025-40028","In the Linux kernel, the following vulnerability has been resolved:\n\nbinder: fix double-free in dbitmap\n\nA process might fail to allocate a new bitmap when trying to expand its\nproc->dmap. In that case, dbitmap_grow() fails and frees the old bitmap\nvia dbitmap_free(). However, the driver calls dbitmap_free() again when\nthe same process terminates, leading to a double-free error:\n\n  ==================================================================\n  BUG: KASAN: double-free in binder_proc_dec_tmpref+0x2e0/0x55c\n  Free of addr ffff00000b7c1420 by task kworker/9:1/209\n\n  CPU: 9 UID: 0 PID: 209 Comm: kworker/9:1 Not tainted 6.17.0-rc6-dirty #5 PREEMPT\n  Hardware name: linux,dummy-virt (DT)\n  Workqueue: events binder_deferred_func\n  Call trace:\n   kfree+0x164/0x31c\n   binder_proc_dec_tmpref+0x2e0/0x55c\n   binder_deferred_func+0xc24/0x1120\n   process_one_work+0x520/0xba4\n  [...]\n\n  Allocated by task 448:\n   __kmalloc_noprof+0x178/0x3c0\n   bitmap_zalloc+0x24/0x30\n   binder_open+0x14c/0xc10\n  [...]\n\n  Freed by task 449:\n   kfree+0x184/0x31c\n   binder_inc_ref_for_node+0xb44/0xe44\n   binder_transaction+0x29b4/0x7fbc\n   binder_thread_write+0x1708/0x442c\n   binder_ioctl+0x1b50/0x2900\n  [...]\n  ==================================================================\n\nFix this issue by marking proc->map NULL in dbitmap_free().",null,[],[],[],[],[15,17,19,21,23,25,27],{"_key":16},"OPENSUSE-SU-2026:10301-1",{"_key":18},"OPENSUSE-SU-2025:15702-1",{"_key":20},"USN-7906-3",{"_key":22},"DEBIAN-CVE-2025-40028",{"_key":24},"UBUNTU-CVE-2025-40028",{"_key":26},"USN-7906-1",{"_key":28},"USN-7906-2",[],[31,32],{"_key":16},{"_key":18},"2025-10-28T09:32:35.681Z","2026-05-11T21:41:05.435Z","Deferred",{"cisa_kev":37,"cisa_ransomware":37,"cisa_vendor":9,"epss_severity":38,"epss_score":39,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":35},false,"low",0.0003,[41,47,51,55],{"url":42,"sources":43,"tags":46},"https://git.kernel.org/stable/c/c301ec61ce6f16e21a36b99225ca8a20c1591e10",[44,45],"cve.org","nvd",[],{"url":48,"sources":49,"tags":50},"https://git.kernel.org/stable/c/0390633979969c54c0ce6a198d6f45cdbe2c84b1",[44,45],[],{"url":52,"sources":53,"tags":54},"https://git.kernel.org/stable/c/b781e5635a3398e2b64440371233c2c5102cd6cb",[44,45],[],{"url":56,"sources":57,"tags":58},"https://git.kernel.org/stable/c/3ebcd3460cad351f198c39c6edb4af519a0ed934",[44,45],[],[],{"date":61,"score":39,"percentile":62},"2026-06-04",0.09143,[64,68,71,74,77,80,83,86,89,92,95,98,101,104,107,110,113,116,119,122,125,128,131,134,137,140,144,147,150,153,156,159,162,165,168,171,174,177,179,182,185,188,191,194,197,200,203,206,209,212,215,218,221,224,227,230,233,236,239,242,245,248,252,255,258,261,264,267,270,273,276,279,282,285,288,291,293,296,299,302,305,308,311,314,317,320,323,326,329,332],{"date":65,"score":66,"percentile":67},"2025-11-04",0.00023,0.04812,{"date":69,"score":66,"percentile":70},"2025-11-05",0.04818,{"date":72,"score":66,"percentile":73},"2025-11-06",0.04932,{"date":75,"score":66,"percentile":76},"2025-11-07",0.0494,{"date":78,"score":66,"percentile":79},"2025-11-08",0.04931,{"date":81,"score":66,"percentile":82},"2025-11-09",0.04934,{"date":84,"score":66,"percentile":85},"2025-11-10",0.04914,{"date":87,"score":66,"percentile":88},"2025-11-11",0.04953,{"date":90,"score":66,"percentile":91},"2025-11-12",0.04967,{"date":93,"score":66,"percentile":94},"2025-11-13",0.05,{"date":96,"score":66,"percentile":97},"2025-11-14",0.05037,{"date":99,"score":66,"percentile":100},"2025-11-15",0.05058,{"date":102,"score":66,"percentile":103},"2025-11-16",0.05068,{"date":105,"score":66,"percentile":106},"2025-11-17",0.05067,{"date":108,"score":66,"percentile":109},"2025-11-18",0.03013,{"date":111,"score":66,"percentile":112},"2025-11-19",0.03064,{"date":114,"score":66,"percentile":115},"2025-11-20",0.03128,{"date":117,"score":66,"percentile":118},"2025-11-21",0.05121,{"date":120,"score":66,"percentile":121},"2025-11-22",0.0512,{"date":123,"score":66,"percentile":124},"2025-11-23",0.05109,{"date":126,"score":66,"percentile":127},"2025-11-24",0.05093,{"date":129,"score":66,"percentile":130},"2025-11-25",0.05103,{"date":132,"score":66,"percentile":133},"2025-11-26",0.05142,{"date":135,"score":66,"percentile":136},"2025-11-27",0.0516,{"date":138,"score":66,"percentile":139},"2025-11-28",0.05141,{"date":141,"score":142,"percentile":143},"2025-11-29",0.00025,0.05889,{"date":145,"score":142,"percentile":146},"2025-11-30",0.05878,{"date":148,"score":142,"percentile":149},"2025-12-01",0.05954,{"date":151,"score":142,"percentile":152},"2025-12-02",0.05969,{"date":154,"score":142,"percentile":155},"2025-12-03",0.05981,{"date":157,"score":142,"percentile":158},"2025-12-04",0.05945,{"date":160,"score":142,"percentile":161},"2025-12-05",0.05992,{"date":163,"score":142,"percentile":164},"2025-12-06",0.05999,{"date":166,"score":142,"percentile":167},"2025-12-07",0.06003,{"date":169,"score":142,"percentile":170},"2025-12-08",0.06007,{"date":172,"score":142,"percentile":173},"2025-12-09",0.06069,{"date":175,"score":142,"percentile":176},"2025-12-10",0.0614,{"date":178,"score":142,"percentile":176},"2025-12-11",{"date":180,"score":142,"percentile":181},"2025-12-12",0.06158,{"date":183,"score":142,"percentile":184},"2025-12-13",0.06199,{"date":186,"score":142,"percentile":187},"2025-12-14",0.06166,{"date":189,"score":142,"percentile":190},"2025-12-15",0.06144,{"date":192,"score":142,"percentile":193},"2025-12-16",0.06168,{"date":195,"score":142,"percentile":196},"2025-12-17",0.06256,{"date":198,"score":142,"percentile":199},"2025-12-18",0.06306,{"date":201,"score":142,"percentile":202},"2025-12-19",0.06292,{"date":204,"score":142,"percentile":205},"2025-12-20",0.06287,{"date":207,"score":142,"percentile":208},"2025-12-21",0.06274,{"date":210,"score":142,"percentile":211},"2025-12-22",0.06225,{"date":213,"score":142,"percentile":214},"2025-12-23",0.06239,{"date":216,"score":142,"percentile":217},"2025-12-24",0.06272,{"date":219,"score":142,"percentile":220},"2025-12-25",0.06322,{"date":222,"score":142,"percentile":223},"2025-12-26",0.06316,{"date":225,"score":142,"percentile":226},"2025-12-27",0.06323,{"date":228,"score":142,"percentile":229},"2025-12-28",0.06313,{"date":231,"score":142,"percentile":232},"2025-12-29",0.06294,{"date":234,"score":142,"percentile":235},"2025-12-30",0.06276,{"date":237,"score":142,"percentile":238},"2025-12-31",0.06326,{"date":240,"score":142,"percentile":241},"2026-01-01",0.06393,{"date":243,"score":142,"percentile":244},"2026-01-02",0.06387,{"date":246,"score":142,"percentile":247},"2026-01-03",0.06372,{"date":249,"score":250,"percentile":251},"2026-01-04",0.00026,0.06681,{"date":253,"score":250,"percentile":254},"2026-01-05",0.06631,{"date":256,"score":250,"percentile":257},"2026-01-06",0.0663,{"date":259,"score":250,"percentile":260},"2026-01-07",0.06654,{"date":262,"score":250,"percentile":263},"2026-01-08",0.0671,{"date":265,"score":250,"percentile":266},"2026-01-09",0.06724,{"date":268,"score":250,"percentile":269},"2026-01-10",0.06761,{"date":271,"score":250,"percentile":272},"2026-01-11",0.06749,{"date":274,"score":250,"percentile":275},"2026-01-12",0.06716,{"date":277,"score":250,"percentile":278},"2026-01-13",0.06699,{"date":280,"score":250,"percentile":281},"2026-01-14",0.0682,{"date":283,"score":250,"percentile":284},"2026-01-15",0.06821,{"date":286,"score":250,"percentile":287},"2026-01-16",0.06831,{"date":289,"score":250,"percentile":290},"2026-01-17",0.06844,{"date":292,"score":250,"percentile":281},"2026-01-18",{"date":294,"score":250,"percentile":295},"2026-01-19",0.06777,{"date":297,"score":250,"percentile":298},"2026-01-20",0.06737,{"date":300,"score":250,"percentile":301},"2026-01-21",0.06734,{"date":303,"score":250,"percentile":304},"2026-01-22",0.06713,{"date":306,"score":250,"percentile":307},"2026-01-23",0.06781,{"date":309,"score":250,"percentile":310},"2026-01-24",0.06823,{"date":312,"score":250,"percentile":313},"2026-01-25",0.06802,{"date":315,"score":250,"percentile":316},"2026-01-26",0.06788,{"date":318,"score":250,"percentile":319},"2026-01-27",0.06776,{"date":321,"score":250,"percentile":322},"2026-01-28",0.0675,{"date":324,"score":250,"percentile":325},"2026-01-29",0.06747,{"date":327,"score":250,"percentile":328},"2026-01-30",0.06762,{"date":330,"score":250,"percentile":331},"2026-01-31",0.06783,{"date":333,"score":250,"percentile":334},"2026-02-01",0.06827,[],[337],{"ecosystem":9,"name":338,"vendor":339,"product":339,"cpe_part":340,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":341},"Linux","linux","a",[342,349,352,355,358],{"version":343,"is_range":344,"range_type":44,"version_start":345,"version_start_type":346,"version_end":347,"version_end_type":348,"fixed_in":9},">= 15d9da3f818cae676f822a04407d3c17b53357d2, \u003C c301ec61ce6f16e21a36b99225ca8a20c1591e10",true,"15d9da3f818cae676f822a04407d3c17b53357d2","including","c301ec61ce6f16e21a36b99225ca8a20c1591e10","excluding",{"version":350,"is_range":344,"range_type":44,"version_start":345,"version_start_type":346,"version_end":351,"version_end_type":348,"fixed_in":9},">= 15d9da3f818cae676f822a04407d3c17b53357d2, \u003C 0390633979969c54c0ce6a198d6f45cdbe2c84b1","0390633979969c54c0ce6a198d6f45cdbe2c84b1",{"version":353,"is_range":344,"range_type":44,"version_start":345,"version_start_type":346,"version_end":354,"version_end_type":348,"fixed_in":9},">= 15d9da3f818cae676f822a04407d3c17b53357d2, \u003C b781e5635a3398e2b64440371233c2c5102cd6cb","b781e5635a3398e2b64440371233c2c5102cd6cb",{"version":356,"is_range":344,"range_type":44,"version_start":345,"version_start_type":346,"version_end":357,"version_end_type":348,"fixed_in":9},">= 15d9da3f818cae676f822a04407d3c17b53357d2, \u003C 3ebcd3460cad351f198c39c6edb4af519a0ed934","3ebcd3460cad351f198c39c6edb4af519a0ed934",{"version":359,"is_range":37,"range_type":44,"version_start":359,"version_start_type":346,"version_end":359,"version_end_type":346,"fixed_in":9},"6.11"]