CVE-2025-39867 - Vulnerability Details

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products
Linux	Linux Kernel

References

Link	Providers
https://lore.kernel.org/linux-cve-announce/2025092357-CVE-2025-39867-51e2@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2025-39867
https://www.cve.org/CVERecord?id=CVE-2025-39867

History

Mon, 29 Sep 2025 06:30:00 +0000

Type	Values Removed	Values Added
References	https://git.kernel.org/stable/c/30c1d25b9870d551be42535067d5481668b5e6f3 https://git.kernel.org/stable/c/44b2be6d5994ddf07ecc86c01d3279bfa13e9ef6 https://git.kernel.org/stable/c/51a321b480d1e753667f6aea497312461563f9fe

Mon, 29 Sep 2025 06:15:00 +0000

Type	Values Removed	Values Added
Description	In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: fix null deref for empty set Blamed commit broke the check for a null scratch map: - if (unlikely(!m \|\| !raw_cpu_ptr(m->scratch))) + if (unlikely(!raw_cpu_ptr(m->scratch))) This should have been "if (!raw_ ...)". Use the pattern of the avx2 version which is more readable. This can only be reproduced if avx2 support isn't available.	This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Title	netfilter: nft_set_pipapo: fix null deref for empty set	kernel: netfilter: nft_set_pipapo: fix null deref for empty set

Wed, 24 Sep 2025 00:15:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025092357-CVE-2025-39867-51e2@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2025-39867 https://www.cve.org/CVERecord?id=CVE-2025-39867
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Moderate`

Tue, 23 Sep 2025 16:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Linux Linux linux Kernel
Vendors & Products		Linux Linux linux Kernel

Tue, 23 Sep 2025 06:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: fix null deref for empty set Blamed commit broke the check for a null scratch map: - if (unlikely(!m \|\| !raw_cpu_ptr(m->scratch))) + if (unlikely(!raw_cpu_ptr(m->scratch))) This should have been "if (!raw_ ...)". Use the pattern of the avx2 version which is more readable. This can only be reproduced if avx2 support isn't available.
Title		netfilter: nft_set_pipapo: fix null deref for empty set
References		https://git.kernel.org/stable/c/30c1d25b9870d551be42535067d5481668b5e6f3 https://git.kernel.org/stable/c/44b2be6d5994ddf07ecc86c01d3279bfa13e9ef6 https://git.kernel.org/stable/c/51a321b480d1e753667f6aea497312461563f9fe

MITRE

Status: REJECTED

Assigner: Linux

Published: 2025-09-23T06:00:42.707Z

Updated: 2025-09-29T06:08:49.023Z

Reserved: 2025-04-16T07:20:57.143Z

Link: CVE-2025-39867

Vulnrichment

No data.

NVD

Status : Rejected

Published: 2025-09-23T06:15:45.780

Modified: 2025-09-29T06:16:41.710

Link: CVE-2025-39867

Redhat

Severity : Moderate

Publid Date: 2025-09-23T00:00:00Z

Links: CVE-2025-39867 - Bugzilla

OpenCVE Enrichment

Updated: 2025-09-23T16:03:08Z

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object