[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2025-40042":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":14,"duplicates":113,"related":114,"reserved_at":9,"published_at":131,"modified_at":132,"state":133,"summary":134,"references_raw":138,"kevs":173,"epss":174,"epss_history":177,"metrics":451,"affected":452},"CVE-2025-40042","In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix race condition in kprobe initialization causing NULL pointer dereference\n\nThere is a critical race condition in kprobe initialization that can lead to\nNULL pointer dereference and kernel crash.\n\n[1135630.084782] Unable to handle kernel paging request at virtual address 0000710a04630000\n...\n[1135630.260314] pstate: 404003c9 (nZcv DAIF +PAN -UAO)\n[1135630.269239] pc : kprobe_perf_func+0x30/0x260\n[1135630.277643] lr : kprobe_dispatcher+0x44/0x60\n[1135630.286041] sp : ffffaeff4977fa40\n[1135630.293441] x29: ffffaeff4977fa40 x28: ffffaf015340e400\n[1135630.302837] x27: 0000000000000000 x26: 0000000000000000\n[1135630.312257] x25: ffffaf029ed108a8 x24: ffffaf015340e528\n[1135630.321705] x23: ffffaeff4977fc50 x22: ffffaeff4977fc50\n[1135630.331154] x21: 0000000000000000 x20: ffffaeff4977fc50\n[1135630.340586] x19: ffffaf015340e400 x18: 0000000000000000\n[1135630.349985] x17: 0000000000000000 x16: 0000000000000000\n[1135630.359285] x15: 0000000000000000 x14: 0000000000000000\n[1135630.368445] x13: 0000000000000000 x12: 0000000000000000\n[1135630.377473] x11: 0000000000000000 x10: 0000000000000000\n[1135630.386411] x9 : 0000000000000000 x8 : 0000000000000000\n[1135630.395252] x7 : 0000000000000000 x6 : 0000000000000000\n[1135630.403963] x5 : 0000000000000000 x4 : 0000000000000000\n[1135630.412545] x3 : 0000710a04630000 x2 : 0000000000000006\n[1135630.421021] x1 : ffffaeff4977fc50 x0 : 0000710a04630000\n[1135630.429410] Call trace:\n[1135630.434828]  kprobe_perf_func+0x30/0x260\n[1135630.441661]  kprobe_dispatcher+0x44/0x60\n[1135630.448396]  aggr_pre_handler+0x70/0xc8\n[1135630.454959]  kprobe_breakpoint_handler+0x140/0x1e0\n[1135630.462435]  brk_handler+0xbc/0xd8\n[1135630.468437]  do_debug_exception+0x84/0x138\n[1135630.475074]  el1_dbg+0x18/0x8c\n[1135630.480582]  security_file_permission+0x0/0xd0\n[1135630.487426]  vfs_write+0x70/0x1c0\n[1135630.493059]  ksys_write+0x5c/0xc8\n[1135630.498638]  __arm64_sys_write+0x24/0x30\n[1135630.504821]  el0_svc_common+0x78/0x130\n[1135630.510838]  el0_svc_handler+0x38/0x78\n[1135630.516834]  el0_svc+0x8/0x1b0\n\nkernel/trace/trace_kprobe.c: 1308\n0xffff3df8995039ec \u003Ckprobe_perf_func+0x2c>:     ldr     x21, [x24,#120]\ninclude/linux/compiler.h: 294\n0xffff3df8995039f0 \u003Ckprobe_perf_func+0x30>:     ldr     x1, [x21,x0]\n\nkernel/trace/trace_kprobe.c\n1308: head = this_cpu_ptr(call->perf_events);\n1309: if (hlist_empty(head))\n1310: \treturn 0;\n\ncrash> struct trace_event_call -o\nstruct trace_event_call {\n  ...\n  [120] struct hlist_head *perf_events;  //(call->perf_event)\n  ...\n}\n\ncrash> struct trace_event_call ffffaf015340e528\nstruct trace_event_call {\n  ...\n  perf_events = 0xffff0ad5fa89f088, //this value is correct, but x21 = 0\n  ...\n}\n\nRace Condition Analysis:\n\nThe race occurs between kprobe activation and perf_events initialization:\n\n  CPU0                                    CPU1\n  ====                                    ====\n  perf_kprobe_init\n    perf_trace_event_init\n      tp_event->perf_events = list;(1)\n      tp_event->class->reg (2)← KPROBE ACTIVE\n                                          Debug exception triggers\n                                          ...\n                                          kprobe_dispatcher\n                                            kprobe_perf_func (tk->tp.flags & TP_FLAG_PROFILE)\n                                              head = this_cpu_ptr(call->perf_events)(3)\n                                              (perf_events is still NULL)\n\nProblem:\n1. CPU0 executes (1) assigning tp_event->perf_events = list\n2. CPU0 executes (2) enabling kprobe functionality via class->reg()\n3. CPU1 triggers and reaches kprobe_dispatcher\n4. CPU1 checks TP_FLAG_PROFILE - condition passes (step 2 completed)\n5. CPU1 calls kprobe_perf_func() and crashes at (3) because\n   call->perf_events is still NULL\n\nCPU1 sees that kprobe functionality is enabled but does not see that\nperf_events has been assigned.\n\nAdd pairing read an\n---truncated---",null,[],[],[],[],[15,17,19,21,23,25,27,29,31,33,35,37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75,77,79,81,83,85,87,89,91,93,95,97,99,101,103,105,107,109,111],{"_key":16},"DLA-4379-1",{"_key":18},"DSA-6053-1",{"_key":20},"OPENSUSE-SU-2026:10301-1",{"_key":22},"SUSE-SU-2026:0278-1",{"_key":24},"SUSE-SU-2026:0281-1",{"_key":26},"SUSE-SU-2026:0315-1",{"_key":28},"SUSE-SU-2026:20207-1",{"_key":30},"SUSE-SU-2026:20220-1",{"_key":32},"SUSE-SU-2026:20228-1",{"_key":34},"SUSE-SU-2026:20477-1",{"_key":36},"SUSE-SU-2026:20498-1",{"_key":38},"SUSE-SU-2026:0293-1",{"_key":40},"OPENSUSE-SU-2025:15702-1",{"_key":42},"OPENSUSE-SU-2026:20145-1",{"_key":44},"SUSE-SU-2026:20845-1",{"_key":46},"SUSE-SU-2026:20876-1",{"_key":48},"MGASA-2025-0309",{"_key":50},"MGASA-2025-0310",{"_key":52},"USN-8029-1",{"_key":54},"USN-8029-2",{"_key":56},"USN-8029-3",{"_key":58},"USN-8030-1",{"_key":60},"USN-8033-1",{"_key":62},"USN-8033-2",{"_key":64},"USN-8033-3",{"_key":66},"USN-8033-4",{"_key":68},"USN-8033-5",{"_key":70},"USN-8033-6",{"_key":72},"USN-8033-7",{"_key":74},"USN-8033-8",{"_key":76},"USN-8034-1",{"_key":78},"USN-8034-2",{"_key":80},"DEBIAN-CVE-2025-40042",{"_key":82},"USN-8095-1",{"_key":84},"USN-8095-2",{"_key":86},"USN-8095-3",{"_key":88},"USN-8095-4",{"_key":90},"USN-8095-5",{"_key":92},"USN-8100-1",{"_key":94},"USN-8125-1",{"_key":96},"USN-8165-1",{"_key":98},"USN-8141-1",{"_key":100},"USN-8163-1",{"_key":102},"USN-8163-2",{"_key":104},"USN-8126-1",{"_key":106},"USN-8243-1",{"_key":108},"UBUNTU-CVE-2025-40042",{"_key":110},"USN-8048-1",{"_key":112},"USN-8261-1",[],[115,116,117,118,119,120,121,122,123,124,125,126,127,128,129,130],{"_key":20},{"_key":22},{"_key":24},{"_key":26},{"_key":28},{"_key":30},{"_key":32},{"_key":34},{"_key":36},{"_key":38},{"_key":40},{"_key":42},{"_key":44},{"_key":46},{"_key":48},{"_key":50},"2025-10-28T11:48:21.638Z","2026-05-11T21:41:21.533Z","Deferred",{"cisa_kev":135,"cisa_ransomware":135,"cisa_vendor":9,"epss_severity":136,"epss_score":137,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":133},false,"low",0.00063,[139,145,149,153,157,161,165,169],{"url":140,"sources":141,"tags":144},"https://git.kernel.org/stable/c/07926ce598a95de6fd874a74fb510e2ebdfd0aae",[142,143],"cve.org","nvd",[],{"url":146,"sources":147,"tags":148},"https://git.kernel.org/stable/c/9c4951b691bb8d7a004acd010f45144391f85ea6",[142,143],[],{"url":150,"sources":151,"tags":152},"https://git.kernel.org/stable/c/95dd33361061f808d1f68616d69ada639e737cfa",[142,143],[],{"url":154,"sources":155,"tags":156},"https://git.kernel.org/stable/c/a6e89ada1ff6b70df73f579071ffa6ade8ae7f98",[142,143],[],{"url":158,"sources":159,"tags":160},"https://git.kernel.org/stable/c/1a301228c0a8aedc3154fb1a274456f487416b96",[142,143],[],{"url":162,"sources":163,"tags":164},"https://git.kernel.org/stable/c/0fa388ab2c290ef1115ff88ae88e881d0fb2db02",[142,143],[],{"url":166,"sources":167,"tags":168},"https://git.kernel.org/stable/c/5ebea6561649d30ec7a18fea23d7f76738dae916",[142,143],[],{"url":170,"sources":171,"tags":172},"https://git.kernel.org/stable/c/9cf9aa7b0acfde7545c1a1d912576e9bab28dc6f",[142,143],[],[],{"date":175,"score":137,"percentile":176},"2026-06-03",0.19923,[178,182,185,188,191,194,197,200,203,206,209,212,215,218,221,224,227,230,233,236,239,242,245,249,252,255,259,262,265,268,271,274,277,280,283,286,289,292,295,298,301,304,307,310,313,316,319,322,325,329,332,335,338,341,344,347,349,352,355,358,361,364,368,371,374,377,380,383,386,389,392,395,398,400,403,406,409,412,415,418,421,424,427,430,433,436,439,442,445,448],{"date":179,"score":180,"percentile":181},"2025-11-04",0.00032,0.0822,{"date":183,"score":180,"percentile":184},"2025-11-05",0.08232,{"date":186,"score":180,"percentile":187},"2025-11-06",0.08349,{"date":189,"score":180,"percentile":190},"2025-11-07",0.08367,{"date":192,"score":180,"percentile":193},"2025-11-08",0.08366,{"date":195,"score":180,"percentile":196},"2025-11-09",0.0833,{"date":198,"score":180,"percentile":199},"2025-11-10",0.08289,{"date":201,"score":180,"percentile":202},"2025-11-11",0.08315,{"date":204,"score":180,"percentile":205},"2025-11-12",0.0835,{"date":207,"score":180,"percentile":208},"2025-11-13",0.08392,{"date":210,"score":180,"percentile":211},"2025-11-14",0.08459,{"date":213,"score":180,"percentile":214},"2025-11-15",0.08492,{"date":216,"score":180,"percentile":217},"2025-11-16",0.08504,{"date":219,"score":180,"percentile":220},"2025-11-17",0.08501,{"date":222,"score":180,"percentile":223},"2025-11-18",0.04987,{"date":225,"score":180,"percentile":226},"2025-11-19",0.05025,{"date":228,"score":180,"percentile":229},"2025-11-20",0.05082,{"date":231,"score":180,"percentile":232},"2025-11-21",0.08615,{"date":234,"score":180,"percentile":235},"2025-11-22",0.08546,{"date":237,"score":180,"percentile":238},"2025-11-23",0.08521,{"date":240,"score":180,"percentile":241},"2025-11-24",0.08513,{"date":243,"score":180,"percentile":244},"2025-11-25",0.08506,{"date":246,"score":247,"percentile":248},"2025-11-26",0.00056,0.1727,{"date":250,"score":247,"percentile":251},"2025-11-27",0.17276,{"date":253,"score":247,"percentile":254},"2025-11-28",0.17263,{"date":256,"score":257,"percentile":258},"2025-11-29",0.00061,0.18796,{"date":260,"score":257,"percentile":261},"2025-11-30",0.188,{"date":263,"score":257,"percentile":264},"2025-12-01",0.18839,{"date":266,"score":257,"percentile":267},"2025-12-02",0.18848,{"date":269,"score":257,"percentile":270},"2025-12-03",0.18865,{"date":272,"score":257,"percentile":273},"2025-12-04",0.18826,{"date":275,"score":257,"percentile":276},"2025-12-05",0.18879,{"date":278,"score":257,"percentile":279},"2025-12-06",0.1888,{"date":281,"score":257,"percentile":282},"2025-12-07",0.18866,{"date":284,"score":257,"percentile":285},"2025-12-08",0.18884,{"date":287,"score":257,"percentile":288},"2025-12-09",0.18951,{"date":290,"score":257,"percentile":291},"2025-12-10",0.19028,{"date":293,"score":257,"percentile":294},"2025-12-11",0.19069,{"date":296,"score":257,"percentile":297},"2025-12-12",0.191,{"date":299,"score":257,"percentile":300},"2025-12-13",0.19112,{"date":302,"score":257,"percentile":303},"2025-12-14",0.19062,{"date":305,"score":257,"percentile":306},"2025-12-15",0.19044,{"date":308,"score":257,"percentile":309},"2025-12-16",0.1908,{"date":311,"score":257,"percentile":312},"2025-12-17",0.19163,{"date":314,"score":257,"percentile":315},"2025-12-18",0.19252,{"date":317,"score":257,"percentile":318},"2025-12-19",0.19273,{"date":320,"score":257,"percentile":321},"2025-12-20",0.19247,{"date":323,"score":257,"percentile":324},"2025-12-21",0.19209,{"date":326,"score":327,"percentile":328},"2025-12-22",0.00051,0.1588,{"date":330,"score":327,"percentile":331},"2025-12-23",0.15864,{"date":333,"score":327,"percentile":334},"2025-12-24",0.15873,{"date":336,"score":327,"percentile":337},"2025-12-25",0.1595,{"date":339,"score":327,"percentile":340},"2025-12-26",0.15944,{"date":342,"score":327,"percentile":343},"2025-12-27",0.15956,{"date":345,"score":327,"percentile":346},"2025-12-28",0.15912,{"date":348,"score":327,"percentile":328},"2025-12-29",{"date":350,"score":327,"percentile":351},"2025-12-30",0.15891,{"date":353,"score":327,"percentile":354},"2025-12-31",0.15958,{"date":356,"score":327,"percentile":357},"2026-01-01",0.16063,{"date":359,"score":327,"percentile":360},"2026-01-02",0.16054,{"date":362,"score":327,"percentile":363},"2026-01-03",0.16032,{"date":365,"score":366,"percentile":367},"2026-01-04",0.00053,0.16742,{"date":369,"score":366,"percentile":370},"2026-01-05",0.16703,{"date":372,"score":366,"percentile":373},"2026-01-06",0.16718,{"date":375,"score":366,"percentile":376},"2026-01-07",0.16755,{"date":378,"score":366,"percentile":379},"2026-01-08",0.16814,{"date":381,"score":366,"percentile":382},"2026-01-09",0.16821,{"date":384,"score":366,"percentile":385},"2026-01-10",0.16838,{"date":387,"score":366,"percentile":388},"2026-01-11",0.16804,{"date":390,"score":366,"percentile":391},"2026-01-12",0.16765,{"date":393,"score":366,"percentile":394},"2026-01-13",0.16747,{"date":396,"score":366,"percentile":397},"2026-01-14",0.16805,{"date":399,"score":366,"percentile":397},"2026-01-15",{"date":401,"score":366,"percentile":402},"2026-01-16",0.16851,{"date":404,"score":366,"percentile":405},"2026-01-17",0.16859,{"date":407,"score":366,"percentile":408},"2026-01-18",0.16801,{"date":410,"score":366,"percentile":411},"2026-01-19",0.16752,{"date":413,"score":366,"percentile":414},"2026-01-20",0.16724,{"date":416,"score":366,"percentile":417},"2026-01-21",0.16702,{"date":419,"score":366,"percentile":420},"2026-01-22",0.16639,{"date":422,"score":366,"percentile":423},"2026-01-23",0.16717,{"date":425,"score":366,"percentile":426},"2026-01-24",0.16743,{"date":428,"score":366,"percentile":429},"2026-01-25",0.16675,{"date":431,"score":366,"percentile":432},"2026-01-26",0.16572,{"date":434,"score":366,"percentile":435},"2026-01-27",0.16562,{"date":437,"score":366,"percentile":438},"2026-01-28",0.16571,{"date":440,"score":366,"percentile":441},"2026-01-29",0.16543,{"date":443,"score":366,"percentile":444},"2026-01-30",0.16552,{"date":446,"score":366,"percentile":447},"2026-01-31",0.16567,{"date":449,"score":366,"percentile":450},"2026-02-01",0.16587,[],[453],{"ecosystem":9,"name":454,"vendor":455,"product":455,"cpe_part":456,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":457},"Linux","linux","a",[458,465,468,471,474,477,480,483,486],{"version":459,"is_range":460,"range_type":142,"version_start":461,"version_start_type":462,"version_end":463,"version_end_type":464,"fixed_in":9},">= 50d780560785b068c358675c5f0bf6c83b5c373e, \u003C 07926ce598a95de6fd874a74fb510e2ebdfd0aae",true,"50d780560785b068c358675c5f0bf6c83b5c373e","including","07926ce598a95de6fd874a74fb510e2ebdfd0aae","excluding",{"version":466,"is_range":460,"range_type":142,"version_start":461,"version_start_type":462,"version_end":467,"version_end_type":464,"fixed_in":9},">= 50d780560785b068c358675c5f0bf6c83b5c373e, \u003C 9c4951b691bb8d7a004acd010f45144391f85ea6","9c4951b691bb8d7a004acd010f45144391f85ea6",{"version":469,"is_range":460,"range_type":142,"version_start":461,"version_start_type":462,"version_end":470,"version_end_type":464,"fixed_in":9},">= 50d780560785b068c358675c5f0bf6c83b5c373e, \u003C 95dd33361061f808d1f68616d69ada639e737cfa","95dd33361061f808d1f68616d69ada639e737cfa",{"version":472,"is_range":460,"range_type":142,"version_start":461,"version_start_type":462,"version_end":473,"version_end_type":464,"fixed_in":9},">= 50d780560785b068c358675c5f0bf6c83b5c373e, \u003C a6e89ada1ff6b70df73f579071ffa6ade8ae7f98","a6e89ada1ff6b70df73f579071ffa6ade8ae7f98",{"version":475,"is_range":460,"range_type":142,"version_start":461,"version_start_type":462,"version_end":476,"version_end_type":464,"fixed_in":9},">= 50d780560785b068c358675c5f0bf6c83b5c373e, \u003C 1a301228c0a8aedc3154fb1a274456f487416b96","1a301228c0a8aedc3154fb1a274456f487416b96",{"version":478,"is_range":460,"range_type":142,"version_start":461,"version_start_type":462,"version_end":479,"version_end_type":464,"fixed_in":9},">= 50d780560785b068c358675c5f0bf6c83b5c373e, \u003C 0fa388ab2c290ef1115ff88ae88e881d0fb2db02","0fa388ab2c290ef1115ff88ae88e881d0fb2db02",{"version":481,"is_range":460,"range_type":142,"version_start":461,"version_start_type":462,"version_end":482,"version_end_type":464,"fixed_in":9},">= 50d780560785b068c358675c5f0bf6c83b5c373e, \u003C 5ebea6561649d30ec7a18fea23d7f76738dae916","5ebea6561649d30ec7a18fea23d7f76738dae916",{"version":484,"is_range":460,"range_type":142,"version_start":461,"version_start_type":462,"version_end":485,"version_end_type":464,"fixed_in":9},">= 50d780560785b068c358675c5f0bf6c83b5c373e, \u003C 9cf9aa7b0acfde7545c1a1d912576e9bab28dc6f","9cf9aa7b0acfde7545c1a1d912576e9bab28dc6f",{"version":487,"is_range":135,"range_type":142,"version_start":487,"version_start_type":462,"version_end":487,"version_end_type":462,"fixed_in":9},"2.6.33"]