Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: fix null deref for empty set Blamed commit broke the check for a null scratch map: - if (unlikely(!m || !*raw_cpu_ptr(m->scratch))) + if (unlikely(!raw_cpu_ptr(m->scratch))) This should have been "if (!*raw_ ...)". Use the pattern of the avx2 version which is more readable. This can only be reproduced if avx2 support isn't available.

INFO

Published Date :

2025-09-23T06:00:42.707Z

Last Modified :

2025-09-29T06:08:49.023Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-39867 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-39867.

URL Resource
https://git.kernel.org/stable/c/30c1d25b9870d551be42535067d5481668b5e6f3
https://git.kernel.org/stable/c/44b2be6d5994ddf07ecc86c01d3279bfa13e9ef6
https://git.kernel.org/stable/c/51a321b480d1e753667f6aea497312461563f9fe
https://lore.kernel.org/linux-cve-announce/2025092357-CVE-2025-39867-51e2@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-39867 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-39867 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact