CVE-2025-38075

MEDIUM EPSS 5.4%
Published Jun 18, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Jun 18, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix timeout on deleted connection NOPIN response timer may expire on a deleted connection and crash with such logs: Did not receive response to NOPIN on CID: 0, failing connection for I_T Nexus (null),i,0x00023d000125,iqn.2017-01.com.iscsi.target,t,0x3d BUG: Kernel NULL pointer dereference on read at 0x00000000 NIP strlcpy+0x8/0xb0 LR iscsit_fill_cxn_timeout_err_stats+0x5c/0xc0 [iscsi_target_mod] Call Trace: iscsit_handle_nopin_response_timeout+0xfc/0x120 [iscsi_target_mod] call_timer_fn+0x58/0x1f0 run_timer_softirq+0x740/0x860 __do_softirq+0x16c/0x420 irq_exit+0x188/0x1c0 timer_interrupt+0x184/0x410 That is because nopin response timer may be re-started on nopin timer expiration. Stop nopin timer before stopping the nopin response timer to be sure that no one of them will be re-started.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
5.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 11

VendorProductVersionRange
linuxlinux_kernel*≥3.1  –  <5.4.294
linuxlinux_kernel*≥5.5  –  <5.10.238
linuxlinux_kernel*≥5.11  –  <5.15.185
linuxlinux_kernel*≥5.16  –  <6.1.141
linuxlinux_kernel*≥6.2  –  <6.6.93
linuxlinux_kernel*≥6.7  –  <6.12.31
linuxlinux_kernel*≥6.13  –  <6.14.9
linuxlinux_kernel6.15any
linuxlinux_kernel6.15any
linuxlinux_kernel6.15any
debiandebian_linux11.0any

References 10

  • git.kernel.org https://git.kernel.org/stable/c/019ca2804f3fb49a7f8e56ea6aeaa1ff32724c27
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2c5081439c7ab8da08427befe427f0d732ebc9f9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3e6429e3707943078240a2c0c0b3ee99ea9b0d9c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/571ce6b6f5cbaf7d24af03cad592fc0e2a54de35
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6815846e0c3a62116a7da9740e3a7c10edc5c7e9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7f533cc5ee4c4436cee51dc58e81dfd9c3384418
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/87389bff743c55b6b85282de91109391f43e0814
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fe8421e853ef289e1324fcda004751c89dd9c18a
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
    Third Party Advisory
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
    Third Party Advisory

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/019ca2804f3fb49a7f8e56ea6aeaa1ff32724c27
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2c5081439c7ab8da08427befe427f0d732ebc9f9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3e6429e3707943078240a2c0c0b3ee99ea9b0d9c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/571ce6b6f5cbaf7d24af03cad592fc0e2a54de35
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6815846e0c3a62116a7da9740e3a7c10edc5c7e9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7f533cc5ee4c4436cee51dc58e81dfd9c3384418
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/87389bff743c55b6b85282de91109391f43e0814
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fe8421e853ef289e1324fcda004751c89dd9c18a
    Patch