CVE-2025-38289

🗓️ 10 Jul 2025 07:42:05Reported by LinuxType

CVE-2025-38289 fixes potential use-after-free in scsi lpfc during driver unload or error handling

Reporter	Title	Published	Views	Family All 178
AstraLinux	Astra Linux - уязвимость в linux-5.10	20 May 202605:53	–	astralinux
Circl	CVE-2025-38289	13 Mar 202600:00	–	circl
CNNVD	Linux kernel 安全漏洞	10 Jul 202500:00	–	cnnvd
Cvelist	CVE-2025-38289 scsi: lpfc: Avoid potential ndlp use-after-free in dev_loss_tmo_callbk	10 Jul 202507:42	–	cvelist
Debian CVE	CVE-2025-38289	10 Jul 202507:42	–	debiancve
EUVD	EUVD-2025-20959	3 Oct 202520:07	–	euvd
NVD	CVE-2025-38289	10 Jul 202508:15	–	nvd
Tenable Nessus	openSUSE 16 Security Update : kernel (openSUSE-SU-2025-20081-1)	2 Dec 202500:00	–	nessus
Tenable Nessus	Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20551)	9 Sep 202500:00	–	nessus
Tenable Nessus	RHEL 9 : kernel (RHSA-2026:1194)	26 Jan 202600:00	–	nessus

NVD

Vulners

CNA

Node

linux linux_kernelRange6.12.5–6.12.37

linux linux_kernelRange6.13–6.15.3

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/scsi/lpfc/lpfc_hbadisc.c"
    ],
    "versions": [
      {
        "version": "e4913d4bc59227fbdfe6b8f5541f49aaea1cb41c",
        "lessThan": "ea405fb4144985d5c60f49c2abd9ba47ea44fdb4",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4281f44ea8bfedd25938a0031bebba1473ece9ad",
        "lessThan": "4f09940b5581e44069eb31a66cf7f05c3c35ed04",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4281f44ea8bfedd25938a0031bebba1473ece9ad",
        "lessThan": "b5162bb6aa1ec04dff4509b025883524b6d7e7ca",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "6.12.5",
        "lessThan": "6.12.37",
        "status": "affected",
        "versionType": "semver"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/scsi/lpfc/lpfc_hbadisc.c"
    ],
    "versions": [
      {
        "version": "6.13",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.13",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.37",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.15.3",
        "lessThanOrEqual": "6.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.16",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/ea405fb4144985d5c60f49c2abd9ba47ea44fdb4
git	www.git.kernel.org/stable/c/4f09940b5581e44069eb31a66cf7f05c3c35ed04
git	www.git.kernel.org/stable/c/b5162bb6aa1ec04dff4509b025883524b6d7e7ca

23 May 2026 15:59Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.17.8

EPSS0.00051

CWE-416