Null Pointer Dereference in Linux Kernel Block Devices with THP Disabled
CVE-2025-38442

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 25 July 2025

What is CVE-2025-38442?

A vulnerability in the Linux kernel can cause a null pointer dereference panic during boot when a block device has a logical block size greater than the page size and transparent huge pages (THP) are disabled. This flaw may lead to system instability and interrupts the boot process. It is crucial to enable THP to mitigate this issue, as it ensures that such block devices function properly without causing memory access errors.

Affected Version(s)

Linux 47dd67532303803a87f43195e088b3b4bcf0454d

Linux 47dd67532303803a87f43195e088b3b4bcf0454d < 4cdf1bdd45ac78a088773722f009883af30ad318

Linux 6.15

References

https://git.kernel.org/stable/c/b025d81b96bfe8a62b6e3e6ac...

https://git.kernel.org/stable/c/4cdf1bdd45ac78a088773722f...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 25, 2025
Vulnerability Reserved
Apr 16, 2025