CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-38139

In the Linux kernel, the following vulnerability has been resolved: netfs: Fix oops in write-retry from mis-resetting the subreq iterator Fix the resetting of the subrequest iterator in netfs_retry_write_stream() to use the iterator-reset function as the iterator may have been shortened by a previous retry. In such a case, the amount of data to be written by the subrequest is not "subreq->len" but "subreq->len - subreq->transferred". Without this, KASAN may see an error in iov_iter_revert(): BUG: KASAN: slab-out-of-bounds in iov_iter_revert lib/iov_iter.c:633 [inline] BUG: KASAN: slab-out-of-bounds in iov_iter_revert+0x443/0x5a0 lib/iov_iter.c:611 Read of size 4 at addr ffff88802912a0b8 by task kworker/u32:7/1147 CPU: 1 UID: 0 PID: 1147 Comm: kworker/u32:7 Not tainted 6.15.0-rc6-syzkaller-00052-g9f35e33144ae #0 PREEMPT(full) Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 Workqueue: events_unbound netfs_write_collection_worker Call Trace: <TASK> __dump_stack lib/dump_stack.c:94 [inline] dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120 print_address_description mm/kasan/report.c:408 [inline] print_report+0xc3/0x670 mm/kasan/report.c:521 kasan_report+0xe0/0x110 mm/kasan/report.c:634 iov_iter_revert lib/iov_iter.c:633 [inline] iov_iter_revert+0x443/0x5a0 lib/iov_iter.c:611 netfs_retry_write_stream fs/netfs/write_retry.c:44 [inline] netfs_retry_writes+0x166d/0x1a50 fs/netfs/write_retry.c:231 netfs_collect_write_results fs/netfs/write_collect.c:352 [inline] netfs_write_collection_worker+0x23fd/0x3830 fs/netfs/write_collect.c:374 process_one_work+0x9cf/0x1b70 kernel/workqueue.c:3238 process_scheduled_works kernel/workqueue.c:3319 [inline] worker_thread+0x6c8/0xf10 kernel/workqueue.c:3400 kthread+0x3c2/0x780 kernel/kthread.c:464 ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:153 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245 </TASK>

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 19.3%

CVSS Severity

CVSS v3 Score 7.1

References

Products affected by CVE-2025-38139

Linux » Linux Kernel » Version: 6.12

cpe:2.3:o:linux:linux_kernel:6.12
Linux » Linux Kernel » Version: 6.12.1

cpe:2.3:o:linux:linux_kernel:6.12.1
Linux » Linux Kernel » Version: 6.12.10

cpe:2.3:o:linux:linux_kernel:6.12.10
Linux » Linux Kernel » Version: 6.12.11

cpe:2.3:o:linux:linux_kernel:6.12.11
Linux » Linux Kernel » Version: 6.12.12

cpe:2.3:o:linux:linux_kernel:6.12.12
Linux » Linux Kernel » Version: 6.12.13

cpe:2.3:o:linux:linux_kernel:6.12.13
Linux » Linux Kernel » Version: 6.12.14

cpe:2.3:o:linux:linux_kernel:6.12.14
Linux » Linux Kernel » Version: 6.12.15

cpe:2.3:o:linux:linux_kernel:6.12.15
Linux » Linux Kernel » Version: 6.12.16

cpe:2.3:o:linux:linux_kernel:6.12.16
Linux » Linux Kernel » Version: 6.12.17

cpe:2.3:o:linux:linux_kernel:6.12.17
Linux » Linux Kernel » Version: 6.12.18

cpe:2.3:o:linux:linux_kernel:6.12.18
Linux » Linux Kernel » Version: 6.12.19

cpe:2.3:o:linux:linux_kernel:6.12.19
Linux » Linux Kernel » Version: 6.12.2

cpe:2.3:o:linux:linux_kernel:6.12.2
Linux » Linux Kernel » Version: 6.12.20

cpe:2.3:o:linux:linux_kernel:6.12.20
Linux » Linux Kernel » Version: 6.12.21

cpe:2.3:o:linux:linux_kernel:6.12.21
Linux » Linux Kernel » Version: 6.12.22

cpe:2.3:o:linux:linux_kernel:6.12.22
Linux » Linux Kernel » Version: 6.12.23

cpe:2.3:o:linux:linux_kernel:6.12.23
Linux » Linux Kernel » Version: 6.12.24

cpe:2.3:o:linux:linux_kernel:6.12.24
Linux » Linux Kernel » Version: 6.12.25

cpe:2.3:o:linux:linux_kernel:6.12.25
Linux » Linux Kernel » Version: 6.12.26

cpe:2.3:o:linux:linux_kernel:6.12.26
Linux » Linux Kernel » Version: 6.12.27

cpe:2.3:o:linux:linux_kernel:6.12.27
Linux » Linux Kernel » Version: 6.12.28

cpe:2.3:o:linux:linux_kernel:6.12.28
Linux » Linux Kernel » Version: 6.12.29

cpe:2.3:o:linux:linux_kernel:6.12.29
Linux » Linux Kernel » Version: 6.12.3

cpe:2.3:o:linux:linux_kernel:6.12.3
Linux » Linux Kernel » Version: 6.12.30

cpe:2.3:o:linux:linux_kernel:6.12.30
Linux » Linux Kernel » Version: 6.12.31

cpe:2.3:o:linux:linux_kernel:6.12.31
Linux » Linux Kernel » Version: 6.12.32

cpe:2.3:o:linux:linux_kernel:6.12.32
Linux » Linux Kernel » Version: 6.12.33

cpe:2.3:o:linux:linux_kernel:6.12.33
Linux » Linux Kernel » Version: 6.12.34

cpe:2.3:o:linux:linux_kernel:6.12.34
Linux » Linux Kernel » Version: 6.12.35

cpe:2.3:o:linux:linux_kernel:6.12.35
Linux » Linux Kernel » Version: 6.12.36

cpe:2.3:o:linux:linux_kernel:6.12.36
Linux » Linux Kernel » Version: 6.12.4

cpe:2.3:o:linux:linux_kernel:6.12.4
Linux » Linux Kernel » Version: 6.12.5

cpe:2.3:o:linux:linux_kernel:6.12.5
Linux » Linux Kernel » Version: 6.12.6

cpe:2.3:o:linux:linux_kernel:6.12.6
Linux » Linux Kernel » Version: 6.12.7

cpe:2.3:o:linux:linux_kernel:6.12.7
Linux » Linux Kernel » Version: 6.12.8

cpe:2.3:o:linux:linux_kernel:6.12.8
Linux » Linux Kernel » Version: 6.12.9

cpe:2.3:o:linux:linux_kernel:6.12.9
Linux » Linux Kernel » Version: 6.13

cpe:2.3:o:linux:linux_kernel:6.13
Linux » Linux Kernel » Version: 6.13.1

cpe:2.3:o:linux:linux_kernel:6.13.1
Linux » Linux Kernel » Version: 6.13.10

cpe:2.3:o:linux:linux_kernel:6.13.10
Linux » Linux Kernel » Version: 6.13.11

cpe:2.3:o:linux:linux_kernel:6.13.11
Linux » Linux Kernel » Version: 6.13.12

cpe:2.3:o:linux:linux_kernel:6.13.12
Linux » Linux Kernel » Version: 6.13.2

cpe:2.3:o:linux:linux_kernel:6.13.2
Linux » Linux Kernel » Version: 6.13.3

cpe:2.3:o:linux:linux_kernel:6.13.3
Linux » Linux Kernel » Version: 6.13.4

cpe:2.3:o:linux:linux_kernel:6.13.4
Linux » Linux Kernel » Version: 6.13.5

cpe:2.3:o:linux:linux_kernel:6.13.5
Linux » Linux Kernel » Version: 6.13.6

cpe:2.3:o:linux:linux_kernel:6.13.6
Linux » Linux Kernel » Version: 6.13.7

cpe:2.3:o:linux:linux_kernel:6.13.7
Linux » Linux Kernel » Version: 6.13.8

cpe:2.3:o:linux:linux_kernel:6.13.8
Linux » Linux Kernel » Version: 6.13.9

cpe:2.3:o:linux:linux_kernel:6.13.9
Linux » Linux Kernel » Version: 6.14

cpe:2.3:o:linux:linux_kernel:6.14
Linux » Linux Kernel » Version: 6.14.1

cpe:2.3:o:linux:linux_kernel:6.14.1
Linux » Linux Kernel » Version: 6.14.10

cpe:2.3:o:linux:linux_kernel:6.14.10
Linux » Linux Kernel » Version: 6.14.11

cpe:2.3:o:linux:linux_kernel:6.14.11
Linux » Linux Kernel » Version: 6.14.2

cpe:2.3:o:linux:linux_kernel:6.14.2
Linux » Linux Kernel » Version: 6.14.3

cpe:2.3:o:linux:linux_kernel:6.14.3
Linux » Linux Kernel » Version: 6.14.4

cpe:2.3:o:linux:linux_kernel:6.14.4
Linux » Linux Kernel » Version: 6.14.5

cpe:2.3:o:linux:linux_kernel:6.14.5
Linux » Linux Kernel » Version: 6.14.6

cpe:2.3:o:linux:linux_kernel:6.14.6
Linux » Linux Kernel » Version: 6.14.7

cpe:2.3:o:linux:linux_kernel:6.14.7
Linux » Linux Kernel » Version: 6.14.8

cpe:2.3:o:linux:linux_kernel:6.14.8
Linux » Linux Kernel » Version: 6.14.9

cpe:2.3:o:linux:linux_kernel:6.14.9
Linux » Linux Kernel » Version: 6.15

cpe:2.3:o:linux:linux_kernel:6.15
Linux » Linux Kernel » Version: 6.15.1

cpe:2.3:o:linux:linux_kernel:6.15.1
Linux » Linux Kernel » Version: 6.15.2

cpe:2.3:o:linux:linux_kernel:6.15.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-38139

Products

Pricing

Contact Us