Null Pointer Dereference in Linux Kernel Affecting Storage Stack Functionality
CVE-2025-38695

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
4 September 2025

What is CVE-2025-38695?

A critical vulnerability in the Linux kernel's storage stack can lead to a null pointer dereference and potential system instability. This issue arises during cleanup routines of the lpfc_vport structure if the initialization of hardware queues fails. When the function lpfc_sli4_read_rev() does not execute properly, the cleanup attempts to operate on uninitialized hardware queues, leading to dereferencing null pointers. A fix has been implemented to add checks for null pointers before proceeding with cleanup, effectively preventing possible system failures and enhancing overall software stability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 5e5b511d8bfaf765cb92a695cda336c936cb86dc < 6711ce7e9de4eb1a541ef30638df1294ea4267f8

Linux 5e5b511d8bfaf765cb92a695cda336c936cb86dc < 74bdf54a847dab209d2a8f65852f59b7fa156175

Linux 5e5b511d8bfaf765cb92a695cda336c936cb86dc < 5e25ee1ecec91c61a8acf938ad338399cad464de

References

https://git.kernel.org/stable/c/6711ce7e9de4eb1a541ef3063...
https://git.kernel.org/stable/c/74bdf54a847dab209d2a8f658...
https://git.kernel.org/stable/c/5e25ee1ecec91c61a8acf938a...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.