PT-2025-36271 · Linux+5 · Linux Kernel+5

Published

2025-01-01

·

Updated

2026-05-22

·

CVE-2025-39676

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The qla4xxx get ep fwdb() function may not return NULL on error, potentially leading to an Oops in the caller due to error pointers being propagated from qla4xxx ep connect(). The issue involves the handling of error pointers within the qla4xxx SCSI driver.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

NULL Pointer Dereference

Weakness Enumeration

CWE-476CWE-394

Related Identifiers

AZL-67034
AZL-73653
BDU:2025-15739
CVE-2025-39676
DLA-4327-1
DLA-4328-1
DSA-6008-1
DSA-6009-1
ECHO-C9D4-46C1-6710
MGASA-2025-0234
MGASA-2025-0235
OESA-2025-2553
OESA-2026-1341
OESA-2026-2417
OESA-2026-2418
OPENSUSE-SU-2025:20091-1
SUSE-SU-2025:21040-1
SUSE-SU-2025:21052-1
SUSE-SU-2025:21056-1
SUSE-SU-2025:21064-1
SUSE-SU-2025:21080-1
SUSE-SU-2025:21147-1
SUSE-SU-2025:21180-1
SUSE-SU-2025:4057-1
SUSE-SU-2025:4128-1
SUSE-SU-2025:4132-1
SUSE-SU-2025:4140-1
SUSE-SU-2025:4141-1
SUSE-SU-2025:4189-1
SUSE-SU-2025:4301-1
USN-7909-1
USN-7909-2
USN-7909-3
USN-7909-4
USN-7909-5
USN-7910-1
USN-7910-2
USN-7933-1
USN-7938-1
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu