Kernel CVES Analysis Sept25 2025 | CVE-2025-39838,CVE-2025-39857, and…#61
Open
amitu314 wants to merge 2 commits intocloud-lts:mainfrom
Open
Kernel CVES Analysis Sept25 2025 | CVE-2025-39838,CVE-2025-39857, and…#61amitu314 wants to merge 2 commits intocloud-lts:mainfrom
amitu314 wants to merge 2 commits intocloud-lts:mainfrom
Conversation
dmell
requested changes
Oct 2, 2025
Contributor
dmell
left a comment
dmell
left a comment
There was a problem hiding this comment.
Please make sure you read the template and the existing assessments so that they are all similarly formatted. In particular:
- check the expected values for the fields
- remove the semicolons at the end of the lines
- ensure YAML is properly formatted (you can run
yamllintto verify that)
vulns/CVE-2025-39838.yml
Outdated
| @@ -0,0 +1,7 @@ | |||
| reachability: Local | |||
| memory_corruption: Likely Null pointer can lead to Memory corruption ; | |||
Contributor
There was a problem hiding this comment.
This should be a boolean field.
vulns/CVE-2025-39838.yml
Outdated
| @@ -0,0 +1,7 @@ | |||
| reachability: Local | |||
| memory_corruption: Likely Null pointer can lead to Memory corruption ; | |||
| bug_class: CWE-476: NULL Pointer Dereference; | |||
vulns/CVE-2025-39838.yml
Outdated
| memory_corruption: Likely Null pointer can lead to Memory corruption ; | ||
| bug_class: CWE-476: NULL Pointer Dereference; | ||
| Impact: Crash,memory leak; | ||
| notes: Null Value is passed without checks leading to possible crash. CONFIG_CIFS needs to be enabled for exploitation ; |
Contributor
There was a problem hiding this comment.
Suggested change
| notes: Null Value is passed without checks leading to possible crash. CONFIG_CIFS needs to be enabled for exploitation ; | |
| notes: Null Value is passed without checks leading to possible crash. CONFIG_CIFS needs to be | |
| enabled for exploitation |
vulns/CVE-2025-39838.yml
Outdated
| reachability: Local | ||
| memory_corruption: Likely Null pointer can lead to Memory corruption ; | ||
| bug_class: CWE-476: NULL Pointer Dereference; | ||
| Impact: Crash,memory leak; |
Contributor
There was a problem hiding this comment.
Suggested change
| Impact: Crash,memory leak; | |
| Impact: Crash,memory leak |
Contributor
There was a problem hiding this comment.
Please apply the comments for the file above to this one too.
Contributor
There was a problem hiding this comment.
Please apply the comments for the file above to this one too.
Author
|
Addressed comments from dmell@ |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Kernel CVES Analysis Sept25 2025