cvelistv5 - cve-2025-21811

CVE-2025-21811 (GCVE-0-2025-21811)

Vulnerability from cvelistv5

Published

2025-02-27 20:01

Modified

2025-05-04 07:21

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: nilfs2: protect access to buffers with no active references nilfs_lookup_dirty_data_buffers(), which iterates through the buffers attached to dirty data folios/pages, accesses the attached buffers without locking the folios/pages. For data cache, nilfs_clear_folio_dirty() may be called asynchronously when the file system degenerates to read only, so nilfs_lookup_dirty_data_buffers() still has the potential to cause use after free issues when buffers lose the protection of their dirty state midway due to this asynchronous clearing and are unintentionally freed by try_to_free_buffers(). Eliminate this race issue by adjusting the lock section in this function.

References

►

URL

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/367a9bffabe08c04f6d725032cce3d891b2b9e1a	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/4b08d23d7d1917bef4fbee8ad81372f49b006656	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/58c27fa7a610b6e8d44e6220e7dbddfbaccaf439	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/72cf688d0ce7e642b12ddc9b2a42524737ec1b4a	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/8e1b9201c9a24638cf09c6e1c9f224157328010b	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/c437dfac9f7a5a46ac2a5e6d6acd3059e9f68188	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/d8ff250e085a4c4cdda4ad1cdd234ed110393143	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/e1fc4a90a90ea8514246c45435662531975937d9	Patch

Impacted products

Vendor

Product

Version

►

Linux

Version: 8c26c4e2694a163d525976e804d81cd955bbb40c
Version: 8c26c4e2694a163d525976e804d81cd955bbb40c
Version: 8c26c4e2694a163d525976e804d81cd955bbb40c
Version: 8c26c4e2694a163d525976e804d81cd955bbb40c
Version: 8c26c4e2694a163d525976e804d81cd955bbb40c
Version: 8c26c4e2694a163d525976e804d81cd955bbb40c
Version: 8c26c4e2694a163d525976e804d81cd955bbb40c
Version: 8c26c4e2694a163d525976e804d81cd955bbb40c

Linux

Version: 3.10

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 7.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2025-21811",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-03-04T18:01:20.629324Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-04T18:07:17.439Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/nilfs2/segment.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "e1fc4a90a90ea8514246c45435662531975937d9",
              "status": "affected",
              "version": "8c26c4e2694a163d525976e804d81cd955bbb40c",
              "versionType": "git"
            },
            {
              "lessThan": "72cf688d0ce7e642b12ddc9b2a42524737ec1b4a",
              "status": "affected",
              "version": "8c26c4e2694a163d525976e804d81cd955bbb40c",
              "versionType": "git"
            },
            {
              "lessThan": "d8ff250e085a4c4cdda4ad1cdd234ed110393143",
              "status": "affected",
              "version": "8c26c4e2694a163d525976e804d81cd955bbb40c",
              "versionType": "git"
            },
            {
              "lessThan": "58c27fa7a610b6e8d44e6220e7dbddfbaccaf439",
              "status": "affected",
              "version": "8c26c4e2694a163d525976e804d81cd955bbb40c",
              "versionType": "git"
            },
            {
              "lessThan": "8e1b9201c9a24638cf09c6e1c9f224157328010b",
              "status": "affected",
              "version": "8c26c4e2694a163d525976e804d81cd955bbb40c",
              "versionType": "git"
            },
            {
              "lessThan": "4b08d23d7d1917bef4fbee8ad81372f49b006656",
              "status": "affected",
              "version": "8c26c4e2694a163d525976e804d81cd955bbb40c",
              "versionType": "git"
            },
            {
              "lessThan": "c437dfac9f7a5a46ac2a5e6d6acd3059e9f68188",
              "status": "affected",
              "version": "8c26c4e2694a163d525976e804d81cd955bbb40c",
              "versionType": "git"
            },
            {
              "lessThan": "367a9bffabe08c04f6d725032cce3d891b2b9e1a",
              "status": "affected",
              "version": "8c26c4e2694a163d525976e804d81cd955bbb40c",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/nilfs2/segment.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.10"
            },
            {
              "lessThan": "3.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.291",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.235",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.179",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.129",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.76",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.13",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.13.*",
              "status": "unaffected",
              "version": "6.13.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.14",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.291",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.235",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.179",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.129",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.76",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.13",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.13.2",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.14",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: protect access to buffers with no active references\n\nnilfs_lookup_dirty_data_buffers(), which iterates through the buffers\nattached to dirty data folios/pages, accesses the attached buffers without\nlocking the folios/pages.\n\nFor data cache, nilfs_clear_folio_dirty() may be called asynchronously\nwhen the file system degenerates to read only, so\nnilfs_lookup_dirty_data_buffers() still has the potential to cause use\nafter free issues when buffers lose the protection of their dirty state\nmidway due to this asynchronous clearing and are unintentionally freed by\ntry_to_free_buffers().\n\nEliminate this race issue by adjusting the lock section in this function."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:21:41.820Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/e1fc4a90a90ea8514246c45435662531975937d9"
        },
        {
          "url": "https://git.kernel.org/stable/c/72cf688d0ce7e642b12ddc9b2a42524737ec1b4a"
        },
        {
          "url": "https://git.kernel.org/stable/c/d8ff250e085a4c4cdda4ad1cdd234ed110393143"
        },
        {
          "url": "https://git.kernel.org/stable/c/58c27fa7a610b6e8d44e6220e7dbddfbaccaf439"
        },
        {
          "url": "https://git.kernel.org/stable/c/8e1b9201c9a24638cf09c6e1c9f224157328010b"
        },
        {
          "url": "https://git.kernel.org/stable/c/4b08d23d7d1917bef4fbee8ad81372f49b006656"
        },
        {
          "url": "https://git.kernel.org/stable/c/c437dfac9f7a5a46ac2a5e6d6acd3059e9f68188"
        },
        {
          "url": "https://git.kernel.org/stable/c/367a9bffabe08c04f6d725032cce3d891b2b9e1a"
        }
      ],
      "title": "nilfs2: protect access to buffers with no active references",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-21811",
    "datePublished": "2025-02-27T20:01:02.256Z",
    "dateReserved": "2024-12-29T08:45:45.772Z",
    "dateUpdated": "2025-05-04T07:21:41.820Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-21811\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2025-02-27T20:16:03.680\",\"lastModified\":\"2025-03-21T18:30:54.380\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nnilfs2: protect access to buffers with no active references\\n\\nnilfs_lookup_dirty_data_buffers(), which iterates through the buffers\\nattached to dirty data folios/pages, accesses the attached buffers without\\nlocking the folios/pages.\\n\\nFor data cache, nilfs_clear_folio_dirty() may be called asynchronously\\nwhen the file system degenerates to read only, so\\nnilfs_lookup_dirty_data_buffers() still has the potential to cause use\\nafter free issues when buffers lose the protection of their dirty state\\nmidway due to this asynchronous clearing and are unintentionally freed by\\ntry_to_free_buffers().\\n\\nEliminate this race issue by adjusting the lock section in this function.\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: nilfs2: protege el acceso a los b\u00faferes sin referencias activas nilfs_lookup_dirty_data_b\u00faferes(), que itera a trav\u00e9s de los b\u00faferes adjuntos a los folios/p\u00e1ginas de datos sucios, accede a los b\u00faferes adjuntos sin bloquear los folios/p\u00e1ginas. Para el cach\u00e9 de datos, nilfs_clear_folio_dirty() puede llamarse de forma asincr\u00f3nica cuando el sistema de archivos se degenera a solo lectura, por lo que nilfs_lookup_dirty_data_b\u00faferes() a\u00fan tiene el potencial de causar problemas de use after free cuando los b\u00faferes pierden la protecci\u00f3n de su estado sucio a mitad de camino debido a esta limpieza asincr\u00f3nica y son liberados involuntariamente por try_to_free_b\u00faferes(). Elimine este problema de ejecuci\u00f3n ajustando la secci\u00f3n de bloqueo en esta funci\u00f3n.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.10\",\"versionEndExcluding\":\"5.4.291\",\"matchCriteriaId\":\"0ACA7A2C-C4C2-4035-B2FD-0D544B71CC80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.5\",\"versionEndExcluding\":\"5.10.235\",\"matchCriteriaId\":\"545121FA-DE31-4154-9446-C2000FB4104D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.11\",\"versionEndExcluding\":\"5.15.179\",\"matchCriteriaId\":\"C708062C-4E1B-465F-AE6D-C09C46400875\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.16\",\"versionEndExcluding\":\"6.1.129\",\"matchCriteriaId\":\"2DA5009C-C9B9-4A1D-9B96-78427E8F232C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2\",\"versionEndExcluding\":\"6.6.76\",\"matchCriteriaId\":\"A6D70701-9CB6-4222-A957-00A419878993\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.7\",\"versionEndExcluding\":\"6.12.13\",\"matchCriteriaId\":\"2897389C-A8C3-4D69-90F2-E701B3D66373\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.13\",\"versionEndExcluding\":\"6.13.2\",\"matchCriteriaId\":\"6D4116B1-1BFD-4F23-BA84-169CC05FC5A3\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/367a9bffabe08c04f6d725032cce3d891b2b9e1a\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/4b08d23d7d1917bef4fbee8ad81372f49b006656\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/58c27fa7a610b6e8d44e6220e7dbddfbaccaf439\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/72cf688d0ce7e642b12ddc9b2a42524737ec1b4a\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/8e1b9201c9a24638cf09c6e1c9f224157328010b\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/c437dfac9f7a5a46ac2a5e6d6acd3059e9f68188\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/d8ff250e085a4c4cdda4ad1cdd234ed110393143\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/e1fc4a90a90ea8514246c45435662531975937d9\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.8, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-21811\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-03-04T18:01:20.629324Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-416\", \"description\": \"CWE-416 Use After Free\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-03-04T18:01:21.977Z\"}}], \"cna\": {\"title\": \"nilfs2: protect access to buffers with no active references\", \"affected\": [{\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"8c26c4e2694a163d525976e804d81cd955bbb40c\", \"lessThan\": \"e1fc4a90a90ea8514246c45435662531975937d9\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"8c26c4e2694a163d525976e804d81cd955bbb40c\", \"lessThan\": \"72cf688d0ce7e642b12ddc9b2a42524737ec1b4a\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"8c26c4e2694a163d525976e804d81cd955bbb40c\", \"lessThan\": \"d8ff250e085a4c4cdda4ad1cdd234ed110393143\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"8c26c4e2694a163d525976e804d81cd955bbb40c\", \"lessThan\": \"58c27fa7a610b6e8d44e6220e7dbddfbaccaf439\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"8c26c4e2694a163d525976e804d81cd955bbb40c\", \"lessThan\": \"8e1b9201c9a24638cf09c6e1c9f224157328010b\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"8c26c4e2694a163d525976e804d81cd955bbb40c\", \"lessThan\": \"4b08d23d7d1917bef4fbee8ad81372f49b006656\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"8c26c4e2694a163d525976e804d81cd955bbb40c\", \"lessThan\": \"c437dfac9f7a5a46ac2a5e6d6acd3059e9f68188\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"8c26c4e2694a163d525976e804d81cd955bbb40c\", \"lessThan\": \"367a9bffabe08c04f6d725032cce3d891b2b9e1a\", \"versionType\": \"git\"}], \"programFiles\": [\"fs/nilfs2/segment.c\"], \"defaultStatus\": \"unaffected\"}, {\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.10\"}, {\"status\": \"unaffected\", \"version\": \"0\", \"lessThan\": \"3.10\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"5.4.291\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.4.*\"}, {\"status\": \"unaffected\", \"version\": \"5.10.235\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.10.*\"}, {\"status\": \"unaffected\", \"version\": \"5.15.179\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.15.*\"}, {\"status\": \"unaffected\", \"version\": \"6.1.129\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.1.*\"}, {\"status\": \"unaffected\", \"version\": \"6.6.76\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.6.*\"}, {\"status\": \"unaffected\", \"version\": \"6.12.13\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.12.*\"}, {\"status\": \"unaffected\", \"version\": \"6.13.2\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.13.*\"}, {\"status\": \"unaffected\", \"version\": \"6.14\", \"versionType\": \"original_commit_for_fix\", \"lessThanOrEqual\": \"*\"}], \"programFiles\": [\"fs/nilfs2/segment.c\"], \"defaultStatus\": \"affected\"}], \"references\": [{\"url\": \"https://git.kernel.org/stable/c/e1fc4a90a90ea8514246c45435662531975937d9\"}, {\"url\": \"https://git.kernel.org/stable/c/72cf688d0ce7e642b12ddc9b2a42524737ec1b4a\"}, {\"url\": \"https://git.kernel.org/stable/c/d8ff250e085a4c4cdda4ad1cdd234ed110393143\"}, {\"url\": \"https://git.kernel.org/stable/c/58c27fa7a610b6e8d44e6220e7dbddfbaccaf439\"}, {\"url\": \"https://git.kernel.org/stable/c/8e1b9201c9a24638cf09c6e1c9f224157328010b\"}, {\"url\": \"https://git.kernel.org/stable/c/4b08d23d7d1917bef4fbee8ad81372f49b006656\"}, {\"url\": \"https://git.kernel.org/stable/c/c437dfac9f7a5a46ac2a5e6d6acd3059e9f68188\"}, {\"url\": \"https://git.kernel.org/stable/c/367a9bffabe08c04f6d725032cce3d891b2b9e1a\"}], \"x_generator\": {\"engine\": \"bippy-5f407fcff5a0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nnilfs2: protect access to buffers with no active references\\n\\nnilfs_lookup_dirty_data_buffers(), which iterates through the buffers\\nattached to dirty data folios/pages, accesses the attached buffers without\\nlocking the folios/pages.\\n\\nFor data cache, nilfs_clear_folio_dirty() may be called asynchronously\\nwhen the file system degenerates to read only, so\\nnilfs_lookup_dirty_data_buffers() still has the potential to cause use\\nafter free issues when buffers lose the protection of their dirty state\\nmidway due to this asynchronous clearing and are unintentionally freed by\\ntry_to_free_buffers().\\n\\nEliminate this race issue by adjusting the lock section in this function.\"}], \"providerMetadata\": {\"orgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"shortName\": \"Linux\", \"dateUpdated\": \"2025-03-24T15:40:46.135Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-21811\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-03-24T15:40:46.135Z\", \"dateReserved\": \"2024-12-29T08:45:45.772Z\", \"assignerOrgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"datePublished\": \"2025-02-27T20:01:02.256Z\", \"assignerShortName\": \"Linux\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

ghsa-j2gc-738w-q744

Vulnerability from github

Published

2025-02-27 21:32

Modified

2025-03-13 15:32

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

In the Linux kernel, the following vulnerability has been resolved:

nilfs2: protect access to buffers with no active references

nilfs_lookup_dirty_data_buffers(), which iterates through the buffers attached to dirty data folios/pages, accesses the attached buffers without locking the folios/pages.

For data cache, nilfs_clear_folio_dirty() may be called asynchronously when the file system degenerates to read only, so nilfs_lookup_dirty_data_buffers() still has the potential to cause use after free issues when buffers lose the protection of their dirty state midway due to this asynchronous clearing and are unintentionally freed by try_to_free_buffers().

Eliminate this race issue by adjusting the lock section in this function.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-21811"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-416"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-02-27T20:16:03Z",
    "severity": "HIGH"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: protect access to buffers with no active references\n\nnilfs_lookup_dirty_data_buffers(), which iterates through the buffers\nattached to dirty data folios/pages, accesses the attached buffers without\nlocking the folios/pages.\n\nFor data cache, nilfs_clear_folio_dirty() may be called asynchronously\nwhen the file system degenerates to read only, so\nnilfs_lookup_dirty_data_buffers() still has the potential to cause use\nafter free issues when buffers lose the protection of their dirty state\nmidway due to this asynchronous clearing and are unintentionally freed by\ntry_to_free_buffers().\n\nEliminate this race issue by adjusting the lock section in this function.",
  "id": "GHSA-j2gc-738w-q744",
  "modified": "2025-03-13T15:32:53Z",
  "published": "2025-02-27T21:32:17Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-21811"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/367a9bffabe08c04f6d725032cce3d891b2b9e1a"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/4b08d23d7d1917bef4fbee8ad81372f49b006656"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/58c27fa7a610b6e8d44e6220e7dbddfbaccaf439"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/72cf688d0ce7e642b12ddc9b2a42524737ec1b4a"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/8e1b9201c9a24638cf09c6e1c9f224157328010b"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/c437dfac9f7a5a46ac2a5e6d6acd3059e9f68188"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/d8ff250e085a4c4cdda4ad1cdd234ed110393143"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/e1fc4a90a90ea8514246c45435662531975937d9"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

wid-sec-w-2025-0461

Vulnerability from csaf_certbund

Published

2025-02-27 23:00

Modified

2025-08-12 22:00

Summary

Linux Kernel: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Der Kernel stellt den Kern des Linux Betriebssystems dar.

Angriff

Ein Angreifer kann mehrere Schwachstellen in Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuführen und um nicht näher spezifizierte Auswirkungen zu erzielen.

Betroffene Betriebssysteme

- Linux

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren und um nicht n\u00e4her spezifizierte Auswirkungen zu erzielen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-0461 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0461.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-0461 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0461"
      },
      {
        "category": "external",
        "summary": "Kernel CVE Announce Mailingliste",
        "url": "https://lore.kernel.org/linux-cve-announce/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2024-58022",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022748-CVE-2024-58022-60ab@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2024-58034",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022751-CVE-2024-58034-36fb@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2024-58042",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022751-CVE-2024-58042-c5ba@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21798",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022751-CVE-2025-21798-5fcb@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21799",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022752-CVE-2025-21799-0420@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21800",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022752-CVE-2025-21800-d1e6@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21801",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022752-CVE-2025-21801-5496@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21802",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022752-CVE-2025-21802-0cc5@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21803",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022752-CVE-2025-21803-e8ea@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21804",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022753-CVE-2025-21804-dea6@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21805",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022753-CVE-2025-21805-7256@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21806",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022753-CVE-2025-21806-7910@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21807",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022753-CVE-2025-21807-a4bb@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21808",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022753-CVE-2025-21808-b8bf@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21809",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022754-CVE-2025-21809-4258@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21810",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022754-CVE-2025-21810-0c14@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21811",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022754-CVE-2025-21811-beb7@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21812",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022754-CVE-2025-21812-9b17@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21813",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022709-CVE-2025-21813-9e46@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21814",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022709-CVE-2025-21814-d723@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21815",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022709-CVE-2025-21815-19c9@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21816",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022709-CVE-2025-21816-bbd4@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21817",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022710-CVE-2025-21817-2fc8@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21818",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022710-CVE-2025-21818-27ee@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21819",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022710-CVE-2025-21819-5549@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21820",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022710-CVE-2025-21820-f4ab@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21821",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022707-CVE-2025-21821-ae41@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21822",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022707-CVE-2025-21822-88c0@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21823",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022708-CVE-2025-21823-9027@gregkh/"
      },
      {
        "category": "external",
        "summary": "Linux Kernel CVE Announcement CVE-2025-21824",
        "url": "https://lore.kernel.org/linux-cve-announce/2025022708-CVE-2025-21824-1a04@gregkh/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0847-1 vom 2025-03-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-March/020505.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0856-1 vom 2025-03-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-March/020508.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0856-1 vom 2025-03-13",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/OSPHACQPT5GWCIN3WJL55RCYA4OHTBLI/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0856-1 vom 2025-03-13",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/OSPHACQPT5GWCIN3WJL55RCYA4OHTBLI/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0955-1 vom 2025-03-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-March/020563.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4102 vom 2025-04-01",
        "url": "https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:1177-1 vom 2025-04-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-April/020670.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:1178-1 vom 2025-04-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-April/020674.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:1180-1 vom 2025-04-09",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/DGJ23MSZWYIA7MJ47RNVV6T27Z324VKA/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:1293-1 vom 2025-04-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-April/020712.html"
      },
      {
        "category": "external",
        "summary": "Container-Optimized OS release notes vom 2025-04-16",
        "url": "https://cloud.google.com/container-optimized-os/docs/release-notes#April_14_2025"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALASKERNEL-5.10-2025-088 vom 2025-04-16",
        "url": "https://alas.aws.amazon.com/AL2/ALASKERNEL-5.10-2025-088.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7489-1 vom 2025-05-06",
        "url": "https://ubuntu.com/security/notices/USN-7489-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7491-1 vom 2025-05-06",
        "url": "https://ubuntu.com/security/notices/USN-7491-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7499-1 vom 2025-05-07",
        "url": "https://ubuntu.com/security/notices/USN-7499-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7489-2 vom 2025-05-07",
        "url": "https://ubuntu.com/security/notices/USN-7489-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7510-1 vom 2025-05-16",
        "url": "https://ubuntu.com/security/notices/USN-7510-1"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:1573-1 vom 2025-05-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020836.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7516-1 vom 2025-05-16",
        "url": "https://ubuntu.com/security/notices/USN-7516-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7512-1 vom 2025-05-16",
        "url": "https://ubuntu.com/security/notices/USN-7512-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7510-2 vom 2025-05-16",
        "url": "https://ubuntu.com/security/notices/USN-7510-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7516-2 vom 2025-05-16",
        "url": "https://ubuntu.com/security/notices/USN-7511-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7511-1 vom 2025-05-16",
        "url": "https://ubuntu.com/security/notices/USN-7511-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7517-1 vom 2025-05-16",
        "url": "https://ubuntu.com/security/notices/USN-7517-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7518-1 vom 2025-05-20",
        "url": "https://ubuntu.com/security/notices/USN-7518-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7521-1 vom 2025-05-20",
        "url": "https://ubuntu.com/security/notices/USN-7521-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7510-5 vom 2025-05-20",
        "url": "https://ubuntu.com/security/notices/USN-7510-5"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7516-3 vom 2025-05-20",
        "url": "https://ubuntu.com/security/notices/USN-7516-3"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7510-4 vom 2025-05-20",
        "url": "https://ubuntu.com/security/notices/USN-7510-4"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7510-3 vom 2025-05-20",
        "url": "https://ubuntu.com/security/notices/USN-7510-3"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7511-3 vom 2025-05-20",
        "url": "https://ubuntu.com/security/notices/USN-7511-3"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01600-1 vom 2025-05-20",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020854.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01640-1 vom 2025-05-21",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020861.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01627-1 vom 2025-05-21",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020866.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01614-1 vom 2025-05-21",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020870.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01620-1 vom 2025-05-21",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020867.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7517-2 vom 2025-05-21",
        "url": "https://ubuntu.com/security/notices/USN-7517-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7516-4 vom 2025-05-21",
        "url": "https://ubuntu.com/security/notices/USN-7516-4"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7521-2 vom 2025-05-22",
        "url": "https://ubuntu.com/security/notices/USN-7521-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7516-5 vom 2025-05-23",
        "url": "https://ubuntu.com/security/notices/USN-7516-5"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4178 vom 2025-05-26",
        "url": "https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01707-1 vom 2025-05-26",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020902.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7516-6 vom 2025-05-26",
        "url": "https://ubuntu.com/security/notices/USN-7516-6"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7517-3 vom 2025-05-26",
        "url": "https://ubuntu.com/security/notices/USN-7517-3"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7510-6 vom 2025-05-27",
        "url": "https://ubuntu.com/security/notices/USN-7510-6"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7539-1 vom 2025-05-28",
        "url": "https://ubuntu.com/security/notices/USN-7539-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7521-3 vom 2025-05-28",
        "url": "https://ubuntu.com/security/notices/USN-7521-3"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7510-7 vom 2025-05-28",
        "url": "https://ubuntu.com/security/notices/USN-7510-7"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7540-1 vom 2025-05-28",
        "url": "https://ubuntu.com/security/notices/USN-7540-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7516-7 vom 2025-05-29",
        "url": "https://ubuntu.com/security/notices/USN-7516-7"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7510-8 vom 2025-05-29",
        "url": "https://ubuntu.com/security/notices/USN-7510-8"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20343-1 vom 2025-05-29",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020965.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7516-9 vom 2025-05-29",
        "url": "https://ubuntu.com/security/notices/USN-7516-9"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7516-8 vom 2025-05-29",
        "url": "https://ubuntu.com/security/notices/USN-7516-8"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20344-1 vom 2025-05-29",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-May/020964.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20354-1 vom 2025-06-02",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021016.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20355-1 vom 2025-06-02",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021015.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20283-1 vom 2025-06-04",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021049.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20260-1 vom 2025-06-04",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021058.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20270-1 vom 2025-06-04",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021056.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20192-1 vom 2025-06-04",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021150.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20206-1 vom 2025-06-04",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021137.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20190-1 vom 2025-06-04",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021154.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALASLIVEPATCH-2025-236 vom 2025-06-12",
        "url": "https://alas.aws.amazon.com/AL2/ALASLIVEPATCH-2025-236.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALASLIVEPATCH-2025-237 vom 2025-06-12",
        "url": "https://alas.aws.amazon.com/AL2/ALASLIVEPATCH-2025-237.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALASLIVEPATCH-2025-238 vom 2025-06-12",
        "url": "https://alas.aws.amazon.com/AL2/ALASLIVEPATCH-2025-238.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALASLIVEPATCH-2025-235 vom 2025-06-12",
        "url": "https://alas.aws.amazon.com/AL2/ALASLIVEPATCH-2025-235.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALASLIVEPATCH-2025-234 vom 2025-06-12",
        "url": "https://alas.aws.amazon.com/AL2/ALASLIVEPATCH-2025-234.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01919-1 vom 2025-06-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021477.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01951-1 vom 2025-06-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021509.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01964-1 vom 2025-06-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021531.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01965-1 vom 2025-06-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021535.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01967-1 vom 2025-06-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021533.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01972-1 vom 2025-06-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021537.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20408-1 vom 2025-06-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021550.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20413-1 vom 2025-06-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021547.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01983-1 vom 2025-06-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021538.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01982-1 vom 2025-06-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021539.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:01995-1 vom 2025-06-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021572.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:02000-1 vom 2025-06-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021568.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20419-1 vom 2025-06-20",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021591.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:20421-1 vom 2025-06-20",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021590.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7593-1 vom 2025-06-24",
        "url": "https://ubuntu.com/security/notices/USN-7593-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7602-1 vom 2025-06-26",
        "url": "https://ubuntu.com/security/notices/USN-7602-1"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2LIVEPATCH-2025-237 vom 2025-06-30",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-2025-237.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2LIVEPATCH-2025-234 vom 2025-06-30",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-2025-234.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2LIVEPATCH-2025-238 vom 2025-06-30",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-2025-238.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2LIVEPATCH-2025-236 vom 2025-06-30",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-2025-236.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2LIVEPATCH-2025-235 vom 2025-06-30",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2LIVEPATCH-2025-235.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-20406 vom 2025-07-08",
        "url": "https://linux.oracle.com/errata/ELSA-2025-20406.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:02254-1 vom 2025-07-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-July/021770.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:02307-1 vom 2025-07-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-July/021804.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:02333-1 vom 2025-07-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-July/021830.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7640-1 vom 2025-07-16",
        "url": "https://ubuntu.com/security/notices/USN-7640-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7653-1 vom 2025-07-17",
        "url": "https://ubuntu.com/security/notices/USN-7653-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7652-1 vom 2025-07-17",
        "url": "https://ubuntu.com/security/notices/USN-7652-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7651-1 vom 2025-07-17",
        "url": "https://ubuntu.com/security/notices/USN-7651-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7651-2 vom 2025-07-18",
        "url": "https://ubuntu.com/security/notices/USN-7651-2"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7651-3 vom 2025-07-22",
        "url": "https://ubuntu.com/security/notices/USN-7651-3"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7651-4 vom 2025-07-22",
        "url": "https://ubuntu.com/security/notices/USN-7651-4"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7651-5 vom 2025-07-24",
        "url": "https://ubuntu.com/security/notices/USN-7651-5"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7651-6 vom 2025-07-24",
        "url": "https://ubuntu.com/security/notices/USN-7651-6"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5973 vom 2025-08-12",
        "url": "https://lists.debian.org/debian-security-announce/2025/msg00137.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Linux Kernel: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-08-12T22:00:00.000+00:00",
      "generator": {
        "date": "2025-08-13T06:27:19.588+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2025-0461",
      "initial_release_date": "2025-02-27T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-02-27T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-03-12T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-03-13T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-03-19T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-03-31T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2025-04-08T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-04-15T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-04-16T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2025-05-06T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-05-07T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-05-18T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Ubuntu und SUSE aufgenommen"
        },
        {
          "date": "2025-05-19T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-05-20T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Ubuntu und SUSE aufgenommen"
        },
        {
          "date": "2025-05-21T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von SUSE und Ubuntu aufgenommen"
        },
        {
          "date": "2025-05-22T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-05-26T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Debian, SUSE und Ubuntu aufgenommen"
        },
        {
          "date": "2025-05-27T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-05-29T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Ubuntu und SUSE aufgenommen"
        },
        {
          "date": "2025-06-02T22:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-06-03T22:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-06-11T22:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2025-06-15T22:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-06-16T22:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-06-17T22:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-06-19T22:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-06-23T22:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-06-26T22:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-06-30T22:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2025-07-08T22:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von Oracle Linux und SUSE aufgenommen"
        },
        {
          "date": "2025-07-14T22:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-07-16T22:00:00.000+00:00",
          "number": "31",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-07-17T22:00:00.000+00:00",
          "number": "32",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-07-21T22:00:00.000+00:00",
          "number": "33",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-07-22T22:00:00.000+00:00",
          "number": "34",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-07-23T22:00:00.000+00:00",
          "number": "35",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-07-24T22:00:00.000+00:00",
          "number": "36",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-07-31T22:00:00.000+00:00",
          "number": "37",
          "summary": "Referenz(en) aufgenommen:"
        },
        {
          "date": "2025-08-12T22:00:00.000+00:00",
          "number": "38",
          "summary": "Neue Updates von Debian aufgenommen"
        }
      ],
      "status": "final",
      "version": "38"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Google Container-Optimized OS",
            "product": {
              "name": "Google Container-Optimized OS",
              "product_id": "1607324",
              "product_identification_helper": {
                "cpe": "cpe:/o:google:container-optimized_os:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Google"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c6.13.4",
                "product": {
                  "name": "Open Source Linux Kernel \u003c6.13.4",
                  "product_id": "T041378"
                }
              },
              {
                "category": "product_version",
                "name": "6.13.4",
                "product": {
                  "name": "Open Source Linux Kernel 6.13.4",
                  "product_id": "T041378-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:linux:linux_kernel:6.13.4"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c6.12.16",
                "product": {
                  "name": "Open Source Linux Kernel \u003c6.12.16",
                  "product_id": "T041379"
                }
              },
              {
                "category": "product_version",
                "name": "6.12.16",
                "product": {
                  "name": "Open Source Linux Kernel 6.12.16",
                  "product_id": "T041379-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:linux:linux_kernel:6.12.16"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c6.6.79",
                "product": {
                  "name": "Open Source Linux Kernel \u003c6.6.79",
                  "product_id": "T041380"
                }
              },
              {
                "category": "product_version",
                "name": "6.6.79",
                "product": {
                  "name": "Open Source Linux Kernel 6.6.79",
                  "product_id": "T041380-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:linux:linux_kernel:6.6.79"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c6.1.129",
                "product": {
                  "name": "Open Source Linux Kernel \u003c6.1.129",
                  "product_id": "T041381"
                }
              },
              {
                "category": "product_version",
                "name": "6.1.129",
                "product": {
                  "name": "Open Source Linux Kernel 6.1.129",
                  "product_id": "T041381-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:linux:linux_kernel:6.1.129"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c6.14-rc3",
                "product": {
                  "name": "Open Source Linux Kernel \u003c6.14-rc3",
                  "product_id": "T041490"
                }
              },
              {
                "category": "product_version",
                "name": "6.14-rc3",
                "product": {
                  "name": "Open Source Linux Kernel 6.14-rc3",
                  "product_id": "T041490-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:linux:linux_kernel:6.14-rc3"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Linux Kernel"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-58022",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2024-58022"
    },
    {
      "cve": "CVE-2024-58034",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2024-58034"
    },
    {
      "cve": "CVE-2024-58042",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2024-58042"
    },
    {
      "cve": "CVE-2025-21798",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21798"
    },
    {
      "cve": "CVE-2025-21799",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21799"
    },
    {
      "cve": "CVE-2025-21800",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21800"
    },
    {
      "cve": "CVE-2025-21801",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21801"
    },
    {
      "cve": "CVE-2025-21802",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21802"
    },
    {
      "cve": "CVE-2025-21803",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21803"
    },
    {
      "cve": "CVE-2025-21804",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21804"
    },
    {
      "cve": "CVE-2025-21805",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21805"
    },
    {
      "cve": "CVE-2025-21806",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21806"
    },
    {
      "cve": "CVE-2025-21807",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21807"
    },
    {
      "cve": "CVE-2025-21808",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21808"
    },
    {
      "cve": "CVE-2025-21809",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21809"
    },
    {
      "cve": "CVE-2025-21810",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21810"
    },
    {
      "cve": "CVE-2025-21811",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21811"
    },
    {
      "cve": "CVE-2025-21812",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21812"
    },
    {
      "cve": "CVE-2025-21813",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21813"
    },
    {
      "cve": "CVE-2025-21814",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21814"
    },
    {
      "cve": "CVE-2025-21815",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21815"
    },
    {
      "cve": "CVE-2025-21816",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21816"
    },
    {
      "cve": "CVE-2025-21817",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21817"
    },
    {
      "cve": "CVE-2025-21818",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21818"
    },
    {
      "cve": "CVE-2025-21819",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21819"
    },
    {
      "cve": "CVE-2025-21820",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21820"
    },
    {
      "cve": "CVE-2025-21821",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21821"
    },
    {
      "cve": "CVE-2025-21822",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21822"
    },
    {
      "cve": "CVE-2025-21823",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21823"
    },
    {
      "cve": "CVE-2025-21824",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "T041381",
          "T041380",
          "T041490",
          "T000126",
          "398363",
          "T041379",
          "T004914",
          "1607324",
          "T041378"
        ]
      },
      "release_date": "2025-02-27T23:00:00.000+00:00",
      "title": "CVE-2025-21824"
    }
  ]
}

fkie_cve-2025-21811

Vulnerability from fkie_nvd

Published

2025-02-27 20:16

Modified

2025-03-21 18:30

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/367a9bffabe08c04f6d725032cce3d891b2b9e1a	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/4b08d23d7d1917bef4fbee8ad81372f49b006656	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/58c27fa7a610b6e8d44e6220e7dbddfbaccaf439	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/72cf688d0ce7e642b12ddc9b2a42524737ec1b4a	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/8e1b9201c9a24638cf09c6e1c9f224157328010b	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/c437dfac9f7a5a46ac2a5e6d6acd3059e9f68188	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/d8ff250e085a4c4cdda4ad1cdd234ed110393143	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/e1fc4a90a90ea8514246c45435662531975937d9	Patch

Impacted products

Vendor	Product	Version
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0ACA7A2C-C4C2-4035-B2FD-0D544B71CC80",
              "versionEndExcluding": "5.4.291",
              "versionStartIncluding": "3.10",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "545121FA-DE31-4154-9446-C2000FB4104D",
              "versionEndExcluding": "5.10.235",
              "versionStartIncluding": "5.5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C708062C-4E1B-465F-AE6D-C09C46400875",
              "versionEndExcluding": "5.15.179",
              "versionStartIncluding": "5.11",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2DA5009C-C9B9-4A1D-9B96-78427E8F232C",
              "versionEndExcluding": "6.1.129",
              "versionStartIncluding": "5.16",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A6D70701-9CB6-4222-A957-00A419878993",
              "versionEndExcluding": "6.6.76",
              "versionStartIncluding": "6.2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2897389C-A8C3-4D69-90F2-E701B3D66373",
              "versionEndExcluding": "6.12.13",
              "versionStartIncluding": "6.7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6D4116B1-1BFD-4F23-BA84-169CC05FC5A3",
              "versionEndExcluding": "6.13.2",
              "versionStartIncluding": "6.13",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: protect access to buffers with no active references\n\nnilfs_lookup_dirty_data_buffers(), which iterates through the buffers\nattached to dirty data folios/pages, accesses the attached buffers without\nlocking the folios/pages.\n\nFor data cache, nilfs_clear_folio_dirty() may be called asynchronously\nwhen the file system degenerates to read only, so\nnilfs_lookup_dirty_data_buffers() still has the potential to cause use\nafter free issues when buffers lose the protection of their dirty state\nmidway due to this asynchronous clearing and are unintentionally freed by\ntry_to_free_buffers().\n\nEliminate this race issue by adjusting the lock section in this function."
    },
    {
      "lang": "es",
      "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: nilfs2: protege el acceso a los b\u00faferes sin referencias activas nilfs_lookup_dirty_data_b\u00faferes(), que itera a trav\u00e9s de los b\u00faferes adjuntos a los folios/p\u00e1ginas de datos sucios, accede a los b\u00faferes adjuntos sin bloquear los folios/p\u00e1ginas. Para el cach\u00e9 de datos, nilfs_clear_folio_dirty() puede llamarse de forma asincr\u00f3nica cuando el sistema de archivos se degenera a solo lectura, por lo que nilfs_lookup_dirty_data_b\u00faferes() a\u00fan tiene el potencial de causar problemas de use after free cuando los b\u00faferes pierden la protecci\u00f3n de su estado sucio a mitad de camino debido a esta limpieza asincr\u00f3nica y son liberados involuntariamente por try_to_free_b\u00faferes(). Elimine este problema de ejecuci\u00f3n ajustando la secci\u00f3n de bloqueo en esta funci\u00f3n."
    }
  ],
  "id": "CVE-2025-21811",
  "lastModified": "2025-03-21T18:30:54.380",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-02-27T20:16:03.680",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/367a9bffabe08c04f6d725032cce3d891b2b9e1a"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/4b08d23d7d1917bef4fbee8ad81372f49b006656"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/58c27fa7a610b6e8d44e6220e7dbddfbaccaf439"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/72cf688d0ce7e642b12ddc9b2a42524737ec1b4a"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/8e1b9201c9a24638cf09c6e1c9f224157328010b"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/c437dfac9f7a5a46ac2a5e6d6acd3059e9f68188"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/d8ff250e085a4c4cdda4ad1cdd234ed110393143"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/e1fc4a90a90ea8514246c45435662531975937d9"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2025-21811 (GCVE-0-2025-21811)

Vulnerability from cvelistv5

ghsa-j2gc-738w-q744

Vulnerability from github

wid-sec-w-2025-0461

Vulnerability from csaf_certbund

fkie_cve-2025-21811

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature