PT-2025-35964 · Linux+5 · Linux Kernel+5

Published

2025-06-30

·

Updated

2026-04-20

·

CVE-2025-38691

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The Linux kernel contains a flaw in the pNFS block/scsi layout implementation. The issue arises from a dereference of uninitialized pointers within the ext tree free commitdata() function during the encoding of extents. This occurs when the next tree prepare commit() function reallocates a larger buffer to retry encoding extents, and the "layoutupdate pages" page array is initialized only after the retry loop. Additionally, there is no limit on the maximum possible buffer size, potentially leading to layout commits exceeding the maximum RPC size accepted by the server.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use of Uninitialized Resource

Access of Uninitialized Pointer

Weakness Enumeration

CWE-908CWE-824

Related Identifiers

AZL-66800
AZL-73920
BDU:2025-15025
CVE-2025-38691
DLA-4327-1
DLA-4328-1
DSA-6009-1
ECHO-10D2-F9BB-EBF8
MGASA-2025-0234
MGASA-2025-0235
OESA-2025-2310
OESA-2025-2311
OESA-2025-2315
OPENSUSE-SU-2025:20081-1
SUSE-SU-2025:03600-1
SUSE-SU-2025:03634-1
SUSE-SU-2025:20851-1
SUSE-SU-2025:20861-1
SUSE-SU-2025:20870-1
SUSE-SU-2025:20898-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025:3751-1
SUSE-SU-2025:4057-1
SUSE-SU-2025:4132-1
SUSE-SU-2025:4141-1
SUSE-SU-2025:4189-1
USN-7909-1
USN-7909-2
USN-7909-3
USN-7909-4
USN-7909-5
USN-7910-1
USN-7910-2
USN-7933-1
USN-7938-1
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu