CNNVD-202510-3888 Information

CNNVD ID

CNNVD-202510-3888

Related CVE

CVE-2025-40031

• CNNVD Published: 2025-10-28

Description (Chinese)

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于iov_iter_extract_pages调用错误处理不当，可能导致空指针取消引用。

Description (English)

Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. Linux Kernel had a security loophole, which stemmed from the mishandling of iov iter extrac pages, which could lead to the cancellation of the reference by the empty pointer.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Linux

Published

2025-10-28

Last Modified

2026-02-24

References

https://git.kernel.org/stable/c/9338093db954918558677a468d32e77041c65167 https://git.kernel.org/stable/c/d5cf5b37064b1699d946e8b7ab4ac7d7d101814c https://git.kernel.org/stable/c/6a7874ab814ce12003c46a92f7afc9b035c8e8e9 https://vigilance.fr/vulnerability/Linux-kernel-multiple-vulnerabilities-dated-28-10-2025-48601

Patch

https://www.kernel.org/