CVE-2025-38621
The CVE-2025-38621 issue affects the Linux kernel md subsystem, where md_spares_need_change could call rdev_addable() while under RCU, potentially dereferencing an rdev.mddev that is NULL after release, causing a NULL pointer dereference and a panic. The published description notes the fix is to ...