Null Pointer Dereference Vulnerability in JFS Module for Linux Kernel
CVE-2025-38203

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
4 July 2025

What is CVE-2025-38203?

A concurrency bug in the JFS module of the Linux kernel can lead to a null pointer dereference, potentially causing a kernel panic and system instability. This occurs when the bmap is set to NULL, which can be triggered under specific circumstances, particularly from workload interleavings or when executed through fuzzing techniques. This vulnerability can affect systems running the Linux kernel versions with JFS enabled, necessitating immediate updates and mitigations.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux b40c2e665cd552eae5fbdbb878bc29a34357668e < 0d50231d473f89024158dc62624930de45d13718

Linux b40c2e665cd552eae5fbdbb878bc29a34357668e

Linux b40c2e665cd552eae5fbdbb878bc29a34357668e < 4a8cb9908b51500a76f5156423bd295df53bff89

References

https://git.kernel.org/stable/c/0d50231d473f89024158dc626...
https://git.kernel.org/stable/c/a9d41c925069c950e18160e12...
https://git.kernel.org/stable/c/4a8cb9908b51500a76f515642...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.